General

  • Target

    bins.sh

  • Size

    10KB

  • Sample

    241030-jqy31szqgp

  • MD5

    308540cfb675829fc95702993818299d

  • SHA1

    d5ee777ed705dcc97965048cc91710e723caa9c3

  • SHA256

    0ce399e4ce51615274a7796025149c5e5e4d69b76c80af2548634043a56ecbe6

  • SHA512

    89d5bbb1e9ddf90f5470a29b75627d14955548a8e60247c83e4b3270aba7936625ca2f42c57932acacaf1ffd22d1ba8817e2e77d6fcbcf130a3f8fb7f8f53317

  • SSDEEP

    96:YlFxNQMwL/TbtiSiqioB357TXrYLIEiLB5ZqiGHbXfYSqn5L+uIrSq0ULuer/T3E:bbwX/oB3Jg2ey0PATGAX/oB3JM

Malware Config

Targets

    • Target

      bins.sh

    • Size

      10KB

    • MD5

      308540cfb675829fc95702993818299d

    • SHA1

      d5ee777ed705dcc97965048cc91710e723caa9c3

    • SHA256

      0ce399e4ce51615274a7796025149c5e5e4d69b76c80af2548634043a56ecbe6

    • SHA512

      89d5bbb1e9ddf90f5470a29b75627d14955548a8e60247c83e4b3270aba7936625ca2f42c57932acacaf1ffd22d1ba8817e2e77d6fcbcf130a3f8fb7f8f53317

    • SSDEEP

      96:YlFxNQMwL/TbtiSiqioB357TXrYLIEiLB5ZqiGHbXfYSqn5L+uIrSq0ULuer/T3E:bbwX/oB3Jg2ey0PATGAX/oB3JM

    • File and Directory Permissions Modification

      Adversaries may modify file or directory permissions to evade defenses.

    • Executes dropped EXE

    • Renames itself

    • Creates/modifies Cron job

      Cron allows running tasks on a schedule, and is commonly used for malware persistence.

    • Enumerates running processes

      Discovers information about currently running processes on the system

MITRE ATT&CK Enterprise v15

Tasks