General

  • Target

    bins.sh

  • Size

    10KB

  • Sample

    241025-paay5syfme

  • MD5

    4f5a2801785277c7b5c205a33d76adb9

  • SHA1

    338917782c97ca6a7b56147e493c7afffca7ca0f

  • SHA256

    950778b67ad8e5d31d3c4e46939cdf9408ce3f9cea718fe412f10e1897106bef

  • SHA512

    7ae278058c749727e7a548d0b5365cae1d876899e5aa424ba524943420edefcb4adf1d1d656a5b4a254474cfdc695f6d376ef9d31c58de02f923fb9961bd0cef

  • SSDEEP

    96:+CuFmuZVSZKEYqm2yfqiKAs4v474i4j4T4HuZmbJmYEXREYqSp2yfqizzCuFmuZF:+CuFmuZgvAsWej6OGuHCuFmu2Wej6Oe

Malware Config

Targets

    • Target

      bins.sh

    • Size

      10KB

    • MD5

      4f5a2801785277c7b5c205a33d76adb9

    • SHA1

      338917782c97ca6a7b56147e493c7afffca7ca0f

    • SHA256

      950778b67ad8e5d31d3c4e46939cdf9408ce3f9cea718fe412f10e1897106bef

    • SHA512

      7ae278058c749727e7a548d0b5365cae1d876899e5aa424ba524943420edefcb4adf1d1d656a5b4a254474cfdc695f6d376ef9d31c58de02f923fb9961bd0cef

    • SSDEEP

      96:+CuFmuZVSZKEYqm2yfqiKAs4v474i4j4T4HuZmbJmYEXREYqSp2yfqizzCuFmuZF:+CuFmuZgvAsWej6OGuHCuFmu2Wej6Oe

    • File and Directory Permissions Modification

      Adversaries may modify file or directory permissions to evade defenses.

    • Executes dropped EXE

    • Renames itself

    • Creates/modifies Cron job

      Cron allows running tasks on a schedule, and is commonly used for malware persistence.

    • Enumerates running processes

      Discovers information about currently running processes on the system

MITRE ATT&CK Enterprise v15

Tasks