General

  • Target

    bins.sh

  • Size

    10KB

  • Sample

    241026-fypmrsxqbj

  • MD5

    3c7686bc4a372f89fc0a69c71181c49d

  • SHA1

    1bd3e8cf5e7622535ac6803ff2f4b441a6b2e6f5

  • SHA256

    4d4cd78d2d65f13b28e3fa8fc089d5a5968b6d616a87282837f7d0277d984637

  • SHA512

    0df3aceb78bc3db6590a8e1657abbe769137287581c40c4b5336a37ceb347bb2ed1e2eb65d017c3ad5044ee0a8ae104e5a461f8894b2e17f717b84ccdc436cf8

  • SSDEEP

    96:QiRXhEX1OaklRGrs0nKmemrvo9dm4Iy/+OaklH9wrs0nKmomrvo9dmxV8B3Dx7F:QiRREX1OaklRGkExOaklA6B

Malware Config

Targets

    • Target

      bins.sh

    • Size

      10KB

    • MD5

      3c7686bc4a372f89fc0a69c71181c49d

    • SHA1

      1bd3e8cf5e7622535ac6803ff2f4b441a6b2e6f5

    • SHA256

      4d4cd78d2d65f13b28e3fa8fc089d5a5968b6d616a87282837f7d0277d984637

    • SHA512

      0df3aceb78bc3db6590a8e1657abbe769137287581c40c4b5336a37ceb347bb2ed1e2eb65d017c3ad5044ee0a8ae104e5a461f8894b2e17f717b84ccdc436cf8

    • SSDEEP

      96:QiRXhEX1OaklRGrs0nKmemrvo9dm4Iy/+OaklH9wrs0nKmomrvo9dmxV8B3Dx7F:QiRREX1OaklRGkExOaklA6B

    • File and Directory Permissions Modification

      Adversaries may modify file or directory permissions to evade defenses.

    • Executes dropped EXE

    • Renames itself

    • Creates/modifies Cron job

      Cron allows running tasks on a schedule, and is commonly used for malware persistence.

    • Enumerates running processes

      Discovers information about currently running processes on the system

MITRE ATT&CK Enterprise v15

Tasks