General
-
Target
bins.sh
-
Size
10KB
-
Sample
241029-feh1wavgka
-
MD5
7c2706ead364c5c2fddf7b35beeb8939
-
SHA1
b87721d5a84c2d88679dfcc5b64440356ee8ee01
-
SHA256
18d2a92bf65ef72bea1d43cb836c2f6970eb88751f6e0ceba498bbcfc512e848
-
SHA512
d15b342cd9398428566b3d6f23cc18faba1d297ad48ccff33b04637d45c9251889c1f47eb89b1744c32fbe2caabc5c32a214593559d4e1a76873c98fdc340f5b
-
SSDEEP
96:O3X8T3crH8rDrTvovVgwVGKV7mZx/PuRFl+A9hqXHOhTVgwVGKpn1Gmmsl+/PuRG:SrH8rDr8vfKQ+61rH8rDV
Static task
static1
Behavioral task
behavioral1
Sample
bins.sh
Resource
ubuntu1804-amd64-20240611-en
Behavioral task
behavioral2
Sample
bins.sh
Resource
debian9-armhf-20240611-en
Behavioral task
behavioral3
Sample
bins.sh
Resource
debian9-mipsbe-20240611-en
Behavioral task
behavioral4
Sample
bins.sh
Resource
debian9-mipsel-20240226-en
Malware Config
Targets
-
-
Target
bins.sh
-
Size
10KB
-
MD5
7c2706ead364c5c2fddf7b35beeb8939
-
SHA1
b87721d5a84c2d88679dfcc5b64440356ee8ee01
-
SHA256
18d2a92bf65ef72bea1d43cb836c2f6970eb88751f6e0ceba498bbcfc512e848
-
SHA512
d15b342cd9398428566b3d6f23cc18faba1d297ad48ccff33b04637d45c9251889c1f47eb89b1744c32fbe2caabc5c32a214593559d4e1a76873c98fdc340f5b
-
SSDEEP
96:O3X8T3crH8rDrTvovVgwVGKV7mZx/PuRFl+A9hqXHOhTVgwVGKpn1Gmmsl+/PuRG:SrH8rDr8vfKQ+61rH8rDV
-
File and Directory Permissions Modification
Adversaries may modify file or directory permissions to evade defenses.
-
Executes dropped EXE
-
Renames itself
-
Creates/modifies Cron job
Cron allows running tasks on a schedule, and is commonly used for malware persistence.
-
Enumerates running processes
Discovers information about currently running processes on the system
-
MITRE ATT&CK Enterprise v15
Defense Evasion
File and Directory Permissions Modification
1Linux and Mac File and Directory Permissions Modification
1Virtualization/Sandbox Evasion
1System Checks
1