General

  • Target

    bins.sh

  • Size

    10KB

  • Sample

    241030-s7lzfswhqn

  • MD5

    87bdcebf720718f77ec03b5241bcdb90

  • SHA1

    9da62aff272cbd9708ecf714442285ea59e419f4

  • SHA256

    d639a8e037ca4e406469c4d92f31018d90367ac86ba016a4c1fcc9216f2985cd

  • SHA512

    006e5d8fe2bd255c447fb0e5d83a07d517eb939935d2b456fbe93e841265f3916f5500020a348783b16182f56f10d507639511098177d7a589ce40a009b15c87

  • SSDEEP

    192:Qagbgk1uOZZSr3p7LBNpUDLiigktZZSr3d7xNpUDLqT:QagpuVxZT

Malware Config

Targets

    • Target

      bins.sh

    • Size

      10KB

    • MD5

      87bdcebf720718f77ec03b5241bcdb90

    • SHA1

      9da62aff272cbd9708ecf714442285ea59e419f4

    • SHA256

      d639a8e037ca4e406469c4d92f31018d90367ac86ba016a4c1fcc9216f2985cd

    • SHA512

      006e5d8fe2bd255c447fb0e5d83a07d517eb939935d2b456fbe93e841265f3916f5500020a348783b16182f56f10d507639511098177d7a589ce40a009b15c87

    • SSDEEP

      192:Qagbgk1uOZZSr3p7LBNpUDLiigktZZSr3d7xNpUDLqT:QagpuVxZT

    • File and Directory Permissions Modification

      Adversaries may modify file or directory permissions to evade defenses.

    • Executes dropped EXE

    • Renames itself

    • Creates/modifies Cron job

      Cron allows running tasks on a schedule, and is commonly used for malware persistence.

    • Enumerates running processes

      Discovers information about currently running processes on the system

MITRE ATT&CK Enterprise v15

Tasks