General

  • Target

    bins.sh

  • Size

    10KB

  • Sample

    241025-mbc4saxhpc

  • MD5

    dd9e110b6bcbe6a075b7123f63d3eea0

  • SHA1

    dffdcd2b76fc2aea77fa703bfb63548d6898e717

  • SHA256

    72f73447ef47f4dfb4e43ea7906888d329cf37fcd53ab1bf2b592ecd0990ee95

  • SHA512

    314ec56452ddbd590ebf1384e08b273b0999782f7cc3176ccb68bc4d62f7a97cf3bddf65acf8b38ee55380073cd632f91339af9cc08381ba5f230ac6afab49a5

  • SSDEEP

    192:ddUN/Io18AcQMrYQZYC9CkAPIo18A2QMrYQZRz:ddUN/Io18AOYC9CkAPIo18AcRz

Malware Config

Targets

    • Target

      bins.sh

    • Size

      10KB

    • MD5

      dd9e110b6bcbe6a075b7123f63d3eea0

    • SHA1

      dffdcd2b76fc2aea77fa703bfb63548d6898e717

    • SHA256

      72f73447ef47f4dfb4e43ea7906888d329cf37fcd53ab1bf2b592ecd0990ee95

    • SHA512

      314ec56452ddbd590ebf1384e08b273b0999782f7cc3176ccb68bc4d62f7a97cf3bddf65acf8b38ee55380073cd632f91339af9cc08381ba5f230ac6afab49a5

    • SSDEEP

      192:ddUN/Io18AcQMrYQZYC9CkAPIo18A2QMrYQZRz:ddUN/Io18AOYC9CkAPIo18AcRz

    • File and Directory Permissions Modification

      Adversaries may modify file or directory permissions to evade defenses.

    • Executes dropped EXE

    • Renames itself

    • Creates/modifies Cron job

      Cron allows running tasks on a schedule, and is commonly used for malware persistence.

    • Enumerates running processes

      Discovers information about currently running processes on the system

MITRE ATT&CK Enterprise v15

Tasks