General

  • Target

    bins.sh

  • Size

    10KB

  • Sample

    241029-feh1wavgka

  • MD5

    7c2706ead364c5c2fddf7b35beeb8939

  • SHA1

    b87721d5a84c2d88679dfcc5b64440356ee8ee01

  • SHA256

    18d2a92bf65ef72bea1d43cb836c2f6970eb88751f6e0ceba498bbcfc512e848

  • SHA512

    d15b342cd9398428566b3d6f23cc18faba1d297ad48ccff33b04637d45c9251889c1f47eb89b1744c32fbe2caabc5c32a214593559d4e1a76873c98fdc340f5b

  • SSDEEP

    96:O3X8T3crH8rDrTvovVgwVGKV7mZx/PuRFl+A9hqXHOhTVgwVGKpn1Gmmsl+/PuRG:SrH8rDr8vfKQ+61rH8rDV

Malware Config

Targets

    • Target

      bins.sh

    • Size

      10KB

    • MD5

      7c2706ead364c5c2fddf7b35beeb8939

    • SHA1

      b87721d5a84c2d88679dfcc5b64440356ee8ee01

    • SHA256

      18d2a92bf65ef72bea1d43cb836c2f6970eb88751f6e0ceba498bbcfc512e848

    • SHA512

      d15b342cd9398428566b3d6f23cc18faba1d297ad48ccff33b04637d45c9251889c1f47eb89b1744c32fbe2caabc5c32a214593559d4e1a76873c98fdc340f5b

    • SSDEEP

      96:O3X8T3crH8rDrTvovVgwVGKV7mZx/PuRFl+A9hqXHOhTVgwVGKpn1Gmmsl+/PuRG:SrH8rDr8vfKQ+61rH8rDV

    • File and Directory Permissions Modification

      Adversaries may modify file or directory permissions to evade defenses.

    • Executes dropped EXE

    • Renames itself

    • Creates/modifies Cron job

      Cron allows running tasks on a schedule, and is commonly used for malware persistence.

    • Enumerates running processes

      Discovers information about currently running processes on the system

MITRE ATT&CK Enterprise v15

Tasks