General

  • Target

    bins.sh

  • Size

    10KB

  • Sample

    241028-bvnh3svkew

  • MD5

    acfd990132153f5d7902470c82acca9a

  • SHA1

    7f8aa0bf8dc9d7ccdf0928b8f63a0c345ec543ed

  • SHA256

    562daf29b3ace2e773d86c54607031a940d685fa0486400720e6a55754c04c1f

  • SHA512

    acefdada157ff51e7b00f84aa0236f875bce14317a9dfb33a1b926d32392f229819ec9c5d7ba296a2b9bb345fafacd7a223bf26c7160ece7e0e145f95a8dc8bd

  • SSDEEP

    192:W+G9o0jeksB4EvCKVzU5g91y/rkjHksB4Ed7qo91y/rs0+G9o0U:qeksB4EvCKVzU5ijHksB4Ed7qeR

Malware Config

Targets

    • Target

      bins.sh

    • Size

      10KB

    • MD5

      acfd990132153f5d7902470c82acca9a

    • SHA1

      7f8aa0bf8dc9d7ccdf0928b8f63a0c345ec543ed

    • SHA256

      562daf29b3ace2e773d86c54607031a940d685fa0486400720e6a55754c04c1f

    • SHA512

      acefdada157ff51e7b00f84aa0236f875bce14317a9dfb33a1b926d32392f229819ec9c5d7ba296a2b9bb345fafacd7a223bf26c7160ece7e0e145f95a8dc8bd

    • SSDEEP

      192:W+G9o0jeksB4EvCKVzU5g91y/rkjHksB4Ed7qo91y/rs0+G9o0U:qeksB4EvCKVzU5ijHksB4Ed7qeR

    • File and Directory Permissions Modification

      Adversaries may modify file or directory permissions to evade defenses.

    • Executes dropped EXE

    • Renames itself

    • Creates/modifies Cron job

      Cron allows running tasks on a schedule, and is commonly used for malware persistence.

    • Enumerates running processes

      Discovers information about currently running processes on the system

MITRE ATT&CK Enterprise v15

Tasks