General

  • Target

    bins.sh

  • Size

    10KB

  • Sample

    241025-yem9psteqg

  • MD5

    e3a7bb986ecb16e86b89353b669137f4

  • SHA1

    98ae32a71879074f4f51063824c8a7a911b88b5f

  • SHA256

    4c6307da44701dd801b4cb85d718f3c4e49902981f5dbabe5b806523fd26986e

  • SHA512

    2fef9d8b63e715428d4625832894c1525bd337fa8759da42fbc6d785b5e61ec96e96d32f9a5a39a56a79d43396d0f7b8dfd6a65d3140098e54f1763722aa5562

  • SSDEEP

    192:OSuhQoy06CtixUWwiq+pii9oHo+66wmM2q+pii3SuhQo96CtixU6J:OSuhQoyaiq+pii9oHo+66wmM2q+pii36

Malware Config

Targets

    • Target

      bins.sh

    • Size

      10KB

    • MD5

      e3a7bb986ecb16e86b89353b669137f4

    • SHA1

      98ae32a71879074f4f51063824c8a7a911b88b5f

    • SHA256

      4c6307da44701dd801b4cb85d718f3c4e49902981f5dbabe5b806523fd26986e

    • SHA512

      2fef9d8b63e715428d4625832894c1525bd337fa8759da42fbc6d785b5e61ec96e96d32f9a5a39a56a79d43396d0f7b8dfd6a65d3140098e54f1763722aa5562

    • SSDEEP

      192:OSuhQoy06CtixUWwiq+pii9oHo+66wmM2q+pii3SuhQo96CtixU6J:OSuhQoyaiq+pii9oHo+66wmM2q+pii36

    • File and Directory Permissions Modification

      Adversaries may modify file or directory permissions to evade defenses.

    • Executes dropped EXE

    • Renames itself

    • Creates/modifies Cron job

      Cron allows running tasks on a schedule, and is commonly used for malware persistence.

    • Enumerates running processes

      Discovers information about currently running processes on the system

MITRE ATT&CK Enterprise v15

Tasks