General

  • Target

    bins.sh

  • Size

    10KB

  • Sample

    241025-tkmg5ssfkq

  • MD5

    3b55705b2ed5f541c6e161223191485c

  • SHA1

    cda519b691c8a97ae4433ef8a4605199e11310a6

  • SHA256

    3297f51e7e7130d0b89c3f969bf33db1b6b23d1e2702daf5a37025e6620936af

  • SHA512

    70034b033c75f58aa32298276d90356839b185870b697f44491aab473a4f6f1b51c6fa641cc839217d4d52628f0fd06265024b70516ae8a6e1319d86151f8697

  • SSDEEP

    96:YEI8LuIuEu6bLP2meUuOOuO+uOYOjO3OtL6g6c6mJpMLCLCnC/rwgMddKLswamWw:bWawAxKetIUtF1pwAxKer

Malware Config

Targets

    • Target

      bins.sh

    • Size

      10KB

    • MD5

      3b55705b2ed5f541c6e161223191485c

    • SHA1

      cda519b691c8a97ae4433ef8a4605199e11310a6

    • SHA256

      3297f51e7e7130d0b89c3f969bf33db1b6b23d1e2702daf5a37025e6620936af

    • SHA512

      70034b033c75f58aa32298276d90356839b185870b697f44491aab473a4f6f1b51c6fa641cc839217d4d52628f0fd06265024b70516ae8a6e1319d86151f8697

    • SSDEEP

      96:YEI8LuIuEu6bLP2meUuOOuO+uOYOjO3OtL6g6c6mJpMLCLCnC/rwgMddKLswamWw:bWawAxKetIUtF1pwAxKer

    • File and Directory Permissions Modification

      Adversaries may modify file or directory permissions to evade defenses.

    • Executes dropped EXE

    • Renames itself

    • Creates/modifies Cron job

      Cron allows running tasks on a schedule, and is commonly used for malware persistence.

    • Enumerates running processes

      Discovers information about currently running processes on the system

MITRE ATT&CK Enterprise v15

Tasks