General

  • Target

    bins.sh

  • Size

    10KB

  • Sample

    241029-lv22kssrez

  • MD5

    a40ab262da159120a1337072b79d5e2b

  • SHA1

    4eb2d6c86b40d5233156048b74e296b35753d64e

  • SHA256

    7cd97990c3f86c74920394acad07e5e30af8250b73d90d7465b2228c7d0684bf

  • SHA512

    fcfc7df96e7bc7f2e7ec314bc6d94c989bcbf640503bcddde3e9a6d64a93306a1fec4340401f46493aceaa010fa9b71836998eb98c1c3fa4820b66c09bb17462

  • SSDEEP

    192:n3D/alNuZIOGxSuQWK4wDoTxTxT+TFTxTvD/alN2qOGxSu/QYTxTxT+TFTxT5:n3D/alNuZIOGxSuQJ4wDxD/alN2qOGxm

Malware Config

Targets

    • Target

      bins.sh

    • Size

      10KB

    • MD5

      a40ab262da159120a1337072b79d5e2b

    • SHA1

      4eb2d6c86b40d5233156048b74e296b35753d64e

    • SHA256

      7cd97990c3f86c74920394acad07e5e30af8250b73d90d7465b2228c7d0684bf

    • SHA512

      fcfc7df96e7bc7f2e7ec314bc6d94c989bcbf640503bcddde3e9a6d64a93306a1fec4340401f46493aceaa010fa9b71836998eb98c1c3fa4820b66c09bb17462

    • SSDEEP

      192:n3D/alNuZIOGxSuQWK4wDoTxTxT+TFTxTvD/alN2qOGxSu/QYTxTxT+TFTxT5:n3D/alNuZIOGxSuQJ4wDxD/alN2qOGxm

    • File and Directory Permissions Modification

      Adversaries may modify file or directory permissions to evade defenses.

    • Executes dropped EXE

    • Renames itself

    • Creates/modifies Cron job

      Cron allows running tasks on a schedule, and is commonly used for malware persistence.

    • Enumerates running processes

      Discovers information about currently running processes on the system

MITRE ATT&CK Enterprise v15

Tasks