General

  • Target

    bins.sh

  • Size

    10KB

  • Sample

    241029-1kbh7s1qgr

  • MD5

    8884ddc985e50d0331d16f46adaf8f45

  • SHA1

    d90507109b94caef99d222457a16b841e42b0995

  • SHA256

    7e3c34b511dd87c77c19e220878052cb3622447646eddf31fa21023686ca2c5c

  • SHA512

    4f33558a380642c6b80001ae401f4ac0ad7725528e25481083ce80213c890b80cb590764bd944fb4123e50e40a2e3b1e84e2ebca4e40709297eda2160052ed72

  • SSDEEP

    192:+CdChCWC7ClRCEB7bSMCJ8hn/mBjhHUP99n8VqCdChCWC7ClRCO7bSMCJGn/mBjr:+CdChCWC7CTCEDhhn/mBVHUPDnGqCdCE

Malware Config

Targets

    • Target

      bins.sh

    • Size

      10KB

    • MD5

      8884ddc985e50d0331d16f46adaf8f45

    • SHA1

      d90507109b94caef99d222457a16b841e42b0995

    • SHA256

      7e3c34b511dd87c77c19e220878052cb3622447646eddf31fa21023686ca2c5c

    • SHA512

      4f33558a380642c6b80001ae401f4ac0ad7725528e25481083ce80213c890b80cb590764bd944fb4123e50e40a2e3b1e84e2ebca4e40709297eda2160052ed72

    • SSDEEP

      192:+CdChCWC7ClRCEB7bSMCJ8hn/mBjhHUP99n8VqCdChCWC7ClRCO7bSMCJGn/mBjr:+CdChCWC7CTCEDhhn/mBVHUPDnGqCdCE

    • File and Directory Permissions Modification

      Adversaries may modify file or directory permissions to evade defenses.

    • Executes dropped EXE

    • Renames itself

    • Creates/modifies Cron job

      Cron allows running tasks on a schedule, and is commonly used for malware persistence.

    • Enumerates running processes

      Discovers information about currently running processes on the system

MITRE ATT&CK Enterprise v15

Tasks