General

  • Target

    bins.sh

  • Size

    10KB

  • Sample

    241030-fbnrysxbjn

  • MD5

    52eeb3bf5568c02f7b922c2f179aab33

  • SHA1

    c0ea2ade25df0fb69d867c080369072567f066c1

  • SHA256

    1c10edf048f55e6d127d3fbe734135ea408ef19ab8074a6d93c408d959d9fe43

  • SHA512

    2becdff38f17fc83105dae1fa2c03df44bf6b4a71100b704a03e28aa44ba35a33c8d1611d9817fc5fee07bd412c1a4b16b746685398abd017ef1fc90547eaaea

  • SSDEEP

    192:RbjIZtKSxWyzAgOqyKJYsVVyEUFuIw42sodHEUoIw42soIbjIZtCWyzAgPyKJYsk:RbjIZtKSOQquIw42soduIw42soIbjIZH

Malware Config

Targets

    • Target

      bins.sh

    • Size

      10KB

    • MD5

      52eeb3bf5568c02f7b922c2f179aab33

    • SHA1

      c0ea2ade25df0fb69d867c080369072567f066c1

    • SHA256

      1c10edf048f55e6d127d3fbe734135ea408ef19ab8074a6d93c408d959d9fe43

    • SHA512

      2becdff38f17fc83105dae1fa2c03df44bf6b4a71100b704a03e28aa44ba35a33c8d1611d9817fc5fee07bd412c1a4b16b746685398abd017ef1fc90547eaaea

    • SSDEEP

      192:RbjIZtKSxWyzAgOqyKJYsVVyEUFuIw42sodHEUoIw42soIbjIZtCWyzAgPyKJYsk:RbjIZtKSOQquIw42soduIw42soIbjIZH

    • File and Directory Permissions Modification

      Adversaries may modify file or directory permissions to evade defenses.

    • Executes dropped EXE

    • Renames itself

    • Creates/modifies Cron job

      Cron allows running tasks on a schedule, and is commonly used for malware persistence.

    • Enumerates running processes

      Discovers information about currently running processes on the system

MITRE ATT&CK Enterprise v15

Tasks