General
-
Target
bins.sh
-
Size
10KB
-
Sample
241027-y8zjtssanh
-
MD5
399a7d06835d26e5c923f62134f59809
-
SHA1
711d4006529a64d9d466292f66cf5264711c93a8
-
SHA256
df8e28c2a8ae831603cc49b28ba8e1eeedcb77793706d1f3af46f0a4841392ed
-
SHA512
1f171cbaa7ffa9b3fcc6713ad3ac0de6c29ed325a63fa0de231bc6493bd709f54245116bbc9e2dabbaa5c0f95751de7ef56b599de61e9ee7c85de29969e1e8d8
-
SSDEEP
192:Oa3WKpe379U8G8C8uBpt4zvUlt0N1WfjIQL0zvUltS8G8C8uBpcN1Wfj2la3T370:OVKpe379U8G8C8uBptUN1WfjIQLu8G8x
Static task
static1
Behavioral task
behavioral1
Sample
bins.sh
Resource
ubuntu1804-amd64-20240611-en
Behavioral task
behavioral2
Sample
bins.sh
Resource
debian9-armhf-20240611-en
Behavioral task
behavioral3
Sample
bins.sh
Resource
debian9-mipsbe-20240611-en
Behavioral task
behavioral4
Sample
bins.sh
Resource
debian9-mipsel-20240611-en
Malware Config
Targets
-
-
Target
bins.sh
-
Size
10KB
-
MD5
399a7d06835d26e5c923f62134f59809
-
SHA1
711d4006529a64d9d466292f66cf5264711c93a8
-
SHA256
df8e28c2a8ae831603cc49b28ba8e1eeedcb77793706d1f3af46f0a4841392ed
-
SHA512
1f171cbaa7ffa9b3fcc6713ad3ac0de6c29ed325a63fa0de231bc6493bd709f54245116bbc9e2dabbaa5c0f95751de7ef56b599de61e9ee7c85de29969e1e8d8
-
SSDEEP
192:Oa3WKpe379U8G8C8uBpt4zvUlt0N1WfjIQL0zvUltS8G8C8uBpcN1Wfj2la3T370:OVKpe379U8G8C8uBptUN1WfjIQLu8G8x
-
File and Directory Permissions Modification
Adversaries may modify file or directory permissions to evade defenses.
-
Executes dropped EXE
-
Renames itself
-
Creates/modifies Cron job
Cron allows running tasks on a schedule, and is commonly used for malware persistence.
-
Enumerates running processes
Discovers information about currently running processes on the system
-
MITRE ATT&CK Enterprise v15
Defense Evasion
File and Directory Permissions Modification
1Linux and Mac File and Directory Permissions Modification
1Virtualization/Sandbox Evasion
1System Checks
1