General

  • Target

    bins.sh

  • Size

    10KB

  • Sample

    241029-nm94bsvema

  • MD5

    f21dc370033ebb16d0c9258220e7b8b3

  • SHA1

    dc122a4d2423cb98bc634efd73735f8ca9c59d00

  • SHA256

    90e78baad275175cdfdd8caa52a2143278062ca4c953671420c8d34d8340b026

  • SHA512

    feb9b4d9a4987f3cd1ffa7c4a160149bd89c2892154622f8552a5dde92aaadfc9e43b3c3a092256b69ce8f9af33f9226c1de0529bb3362db67a2852e812600b4

  • SSDEEP

    192:Ptma4tMxMRMmMHMbMJ2aXLSJZFYsxW+uxYsxW+gAnOXLSJZ/MxMRMmMHMbMu:Qa4tMxMRMmMHMbMJ2S4oMxMRMmMHMbMu

Malware Config

Targets

    • Target

      bins.sh

    • Size

      10KB

    • MD5

      f21dc370033ebb16d0c9258220e7b8b3

    • SHA1

      dc122a4d2423cb98bc634efd73735f8ca9c59d00

    • SHA256

      90e78baad275175cdfdd8caa52a2143278062ca4c953671420c8d34d8340b026

    • SHA512

      feb9b4d9a4987f3cd1ffa7c4a160149bd89c2892154622f8552a5dde92aaadfc9e43b3c3a092256b69ce8f9af33f9226c1de0529bb3362db67a2852e812600b4

    • SSDEEP

      192:Ptma4tMxMRMmMHMbMJ2aXLSJZFYsxW+uxYsxW+gAnOXLSJZ/MxMRMmMHMbMu:Qa4tMxMRMmMHMbMJ2S4oMxMRMmMHMbMu

    • File and Directory Permissions Modification

      Adversaries may modify file or directory permissions to evade defenses.

    • Executes dropped EXE

    • Renames itself

    • Creates/modifies Cron job

      Cron allows running tasks on a schedule, and is commonly used for malware persistence.

    • Enumerates running processes

      Discovers information about currently running processes on the system

MITRE ATT&CK Enterprise v15

Tasks