General

  • Target

    bins.sh

  • Size

    10KB

  • Sample

    241029-q6zstawcmn

  • MD5

    9229804798db8158136054daf1e3d19e

  • SHA1

    85ff3e61e1645063d23d849fcafc8a929269eb81

  • SHA256

    f0efccce370bb6833d4da45aba5c69fdadc50cb2485743c3a31ada01a497ab00

  • SHA512

    e334efa180be37ea91e4fb3389f33f9c14bbf9203812f4d1b4f27c224a0f24e639dea6fd7ff176cf19c3386bd1268c56e5e24d439a097551df913c8dbe6b9cd3

  • SSDEEP

    192:Wrn206aRI8qvHU5FxeFBERQvHU5Fowm6aRI86rnK:306aRI8PefERnm6aRI8P

Malware Config

Targets

    • Target

      bins.sh

    • Size

      10KB

    • MD5

      9229804798db8158136054daf1e3d19e

    • SHA1

      85ff3e61e1645063d23d849fcafc8a929269eb81

    • SHA256

      f0efccce370bb6833d4da45aba5c69fdadc50cb2485743c3a31ada01a497ab00

    • SHA512

      e334efa180be37ea91e4fb3389f33f9c14bbf9203812f4d1b4f27c224a0f24e639dea6fd7ff176cf19c3386bd1268c56e5e24d439a097551df913c8dbe6b9cd3

    • SSDEEP

      192:Wrn206aRI8qvHU5FxeFBERQvHU5Fowm6aRI86rnK:306aRI8PefERnm6aRI8P

    • File and Directory Permissions Modification

      Adversaries may modify file or directory permissions to evade defenses.

    • Executes dropped EXE

    • Renames itself

    • Creates/modifies Cron job

      Cron allows running tasks on a schedule, and is commonly used for malware persistence.

    • Enumerates running processes

      Discovers information about currently running processes on the system

MITRE ATT&CK Enterprise v15

Tasks