General

  • Target

    bins.sh

  • Size

    10KB

  • Sample

    241029-e5yctaveph

  • MD5

    727fd8a3b01d7761fea479c5e1a87aea

  • SHA1

    06637f2257d67c4f5e56f09df470708495ef8296

  • SHA256

    2c2910fbbc9a39216fb38d135fd6231588ae4674c7bee6374231b569ce78718e

  • SHA512

    25603ec8f50434e4b3d4524765268c719dedeef51d3d0a08bd401c0a2fef915be408461acf2a123052eda7a35fe505ed4fab5040d67aff4b3c5702ec0c64777a

  • SSDEEP

    96:YD1DVD8T3gVPVjV8rDrLttFZ1V3A5RnLb3JLbOb+bVGKtwszxhZmMQULQMuZUyKe:StJ8rDrEBLqy+o5tJ8rDh

Malware Config

Targets

    • Target

      bins.sh

    • Size

      10KB

    • MD5

      727fd8a3b01d7761fea479c5e1a87aea

    • SHA1

      06637f2257d67c4f5e56f09df470708495ef8296

    • SHA256

      2c2910fbbc9a39216fb38d135fd6231588ae4674c7bee6374231b569ce78718e

    • SHA512

      25603ec8f50434e4b3d4524765268c719dedeef51d3d0a08bd401c0a2fef915be408461acf2a123052eda7a35fe505ed4fab5040d67aff4b3c5702ec0c64777a

    • SSDEEP

      96:YD1DVD8T3gVPVjV8rDrLttFZ1V3A5RnLb3JLbOb+bVGKtwszxhZmMQULQMuZUyKe:StJ8rDrEBLqy+o5tJ8rDh

    • File and Directory Permissions Modification

      Adversaries may modify file or directory permissions to evade defenses.

    • Executes dropped EXE

    • Renames itself

    • Creates/modifies Cron job

      Cron allows running tasks on a schedule, and is commonly used for malware persistence.

    • Enumerates running processes

      Discovers information about currently running processes on the system

MITRE ATT&CK Enterprise v15

Tasks