8d3cbb361ad830c50f9e46fe912cd04b2c9d1ca571124e7ff4c59c30a6865aa5

Analysis

max time kernel
2s
max time network
12s
platform
debian-9_mips
resource
debian9-mipsbe-20240418-en
resource tags

arch:mipsimage:debian9-mipsbe-20240418-enkernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipssystem
submitted
12-10-2024 09:52

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

packages/dmg/script/deploy.sh
Size

317B
MD5

94dd4e2eddf32ec526632411337fa7b4
SHA1

c779797bcdf5ab313c99c15bce6c83b60f166c5f
SHA256

c861f783bce4b530306750fbfd79f330b8b1039a9ba62afc6ea0b3351f17161a
SHA512

cd206b651027d673e85fff751dbe8eb3d5553662c64d8451b48408ebcc3be7e998bba5812e1180b8a806a3c945dbe4bc87784e12492172f015ea805a1139069a

Score

3^/10

discovery

Malware Config

Signatures

Reads runtime system information 2 IoCs

Reads data from /proc virtual filesystem.

discovery

description	ioc	Process
File opened for reading	/proc/filesystems	ssh
File opened for reading	/proc/733/fd	ssh

System Network Configuration Discovery 1 TTPs 1 IoCs

Adversaries may gather information about the network configuration of a system.

discovery

System Network Configuration Discovery

T1016

pid	Process
732	deploy.sh

/tmp/packages/dmg/script/deploy.sh
/tmp/packages/dmg/script/deploy.sh
1⤵
- System Network Configuration Discovery
PID:732
- /usr/bin/ssh
  ssh "tlauncher@tl-main" mkdir -p "brands/files/@short_brand@/dmg"
  2⤵
  - Reads runtime system information
  PID:733

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

T1016

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads