General

  • Target

    bins.sh

  • Size

    10KB

  • Sample

    241025-v65fhszmgs

  • MD5

    96e83fb3a5ce857bead03a4ece2281ad

  • SHA1

    0858e95c507dbfcc6f0ce4de45a7160c44b79640

  • SHA256

    43a34cb17335479a08af55095afdb664e06167f130108de2f485c9be8035f0a5

  • SHA512

    b548e46dcf7dd722f739488debe3e4024c56a215b3d45c2ac7671ab4eef4ff5f67a03356ba7baeb62939abd4c411b860bd4967b054efd8c07bbba3c047ff4b5e

  • SSDEEP

    96:VYRt6bLKLOlO1OYOjO3Otk37mJpMooM/rwgZhrzcfLqXJ2xooM/rwgyuk37mJp6u:V4igwxKet+s9H3LgwxKej

Malware Config

Targets

    • Target

      bins.sh

    • Size

      10KB

    • MD5

      96e83fb3a5ce857bead03a4ece2281ad

    • SHA1

      0858e95c507dbfcc6f0ce4de45a7160c44b79640

    • SHA256

      43a34cb17335479a08af55095afdb664e06167f130108de2f485c9be8035f0a5

    • SHA512

      b548e46dcf7dd722f739488debe3e4024c56a215b3d45c2ac7671ab4eef4ff5f67a03356ba7baeb62939abd4c411b860bd4967b054efd8c07bbba3c047ff4b5e

    • SSDEEP

      96:VYRt6bLKLOlO1OYOjO3Otk37mJpMooM/rwgZhrzcfLqXJ2xooM/rwgyuk37mJp6u:V4igwxKet+s9H3LgwxKej

    • File and Directory Permissions Modification

      Adversaries may modify file or directory permissions to evade defenses.

    • Executes dropped EXE

    • Renames itself

    • Creates/modifies Cron job

      Cron allows running tasks on a schedule, and is commonly used for malware persistence.

    • Enumerates running processes

      Discovers information about currently running processes on the system

MITRE ATT&CK Enterprise v15

Tasks