General

  • Target

    bins.sh

  • Size

    10KB

  • Sample

    241027-hj7k5stjbv

  • MD5

    494b961d2cc6cd624a738d892314cce5

  • SHA1

    2052b079fe79da190c6459c627a8c44003ae1f58

  • SHA256

    1897ecadd0de224bc96967fc98ac118076ea7a4d083e06a94dec9ead30a9551a

  • SHA512

    801d76a32d0790a02cd3d7cd93041c371e44ee9240e240edbb3ecc9fe52c8c26b5395847509398bfa4a17c7a0064475421114120a7b5a49d167b5015a0149e50

  • SSDEEP

    96:0rD7ICJJSVBxqV9VlVAVhVlVAzyqz6JbvQXgQLYE1sw/yqz8zJJSVBhk7V9VlVAQ:6eqXrifnmzheJqSXrifn0f

Malware Config

Targets

    • Target

      bins.sh

    • Size

      10KB

    • MD5

      494b961d2cc6cd624a738d892314cce5

    • SHA1

      2052b079fe79da190c6459c627a8c44003ae1f58

    • SHA256

      1897ecadd0de224bc96967fc98ac118076ea7a4d083e06a94dec9ead30a9551a

    • SHA512

      801d76a32d0790a02cd3d7cd93041c371e44ee9240e240edbb3ecc9fe52c8c26b5395847509398bfa4a17c7a0064475421114120a7b5a49d167b5015a0149e50

    • SSDEEP

      96:0rD7ICJJSVBxqV9VlVAVhVlVAzyqz6JbvQXgQLYE1sw/yqz8zJJSVBhk7V9VlVAQ:6eqXrifnmzheJqSXrifn0f

    • File and Directory Permissions Modification

      Adversaries may modify file or directory permissions to evade defenses.

    • Executes dropped EXE

    • Renames itself

    • Creates/modifies Cron job

      Cron allows running tasks on a schedule, and is commonly used for malware persistence.

    • Enumerates running processes

      Discovers information about currently running processes on the system

MITRE ATT&CK Enterprise v15

Tasks