General
-
Target
bins.sh
-
Size
10KB
-
Sample
241027-3jva2aspbz
-
MD5
cd0b8da301cbc1912528ad75f74ff36d
-
SHA1
57aa912f4d5ab4222659474749ca725b4fdf3138
-
SHA256
df25974f365eb3183f893e2021c59d5d9abb8205585c3557a98558fd12f74f69
-
SHA512
63474d88feb6e181b2c6b3c3a8bdd3b7ed9dfa2cde9ba9766b50bc464714bbbc93650635a7ad135a66c1edabf7ff69cddfe43e08c8fb123409e3bdb4bf7ceaea
-
SSDEEP
192:ZJdslV9vWmv+SUO0EP8okpsFb3d9aBVpsWmv+SAJdslVn0EP8okxLd9aBV2:ZJdslV9vWmv+SUO0EP8oosFbusWmv+SY
Static task
static1
Behavioral task
behavioral1
Sample
bins.sh
Resource
ubuntu1804-amd64-20240611-en
Behavioral task
behavioral2
Sample
bins.sh
Resource
debian9-armhf-20240611-en
Behavioral task
behavioral3
Sample
bins.sh
Resource
debian9-mipsbe-20240611-en
Behavioral task
behavioral4
Sample
bins.sh
Resource
debian9-mipsel-20240611-en
Malware Config
Targets
-
-
Target
bins.sh
-
Size
10KB
-
MD5
cd0b8da301cbc1912528ad75f74ff36d
-
SHA1
57aa912f4d5ab4222659474749ca725b4fdf3138
-
SHA256
df25974f365eb3183f893e2021c59d5d9abb8205585c3557a98558fd12f74f69
-
SHA512
63474d88feb6e181b2c6b3c3a8bdd3b7ed9dfa2cde9ba9766b50bc464714bbbc93650635a7ad135a66c1edabf7ff69cddfe43e08c8fb123409e3bdb4bf7ceaea
-
SSDEEP
192:ZJdslV9vWmv+SUO0EP8okpsFb3d9aBVpsWmv+SAJdslVn0EP8okxLd9aBV2:ZJdslV9vWmv+SUO0EP8oosFbusWmv+SY
-
File and Directory Permissions Modification
Adversaries may modify file or directory permissions to evade defenses.
-
Executes dropped EXE
-
Renames itself
-
Unexpected DNS network traffic destination
Network traffic to other servers than the configured DNS servers was detected on the DNS port.
-
Creates/modifies Cron job
Cron allows running tasks on a schedule, and is commonly used for malware persistence.
-
Enumerates running processes
Discovers information about currently running processes on the system
-