General
-
Target
bins.sh
-
Size
10KB
-
Sample
241101-hm2t3awpb1
-
MD5
338302d32b0c3daa345d1ebffb6314f9
-
SHA1
0528a9a253f44da40da1b66bde7f13c7f7d05c29
-
SHA256
192bdbc63fcf19c1055403aca1d45f2e23f722da1612e71c946a90773f9982fe
-
SHA512
9b6c15351c97741cf60e149af324ff7595b853ebb0cbbd80aad8fbd650aebb3460cc38ee8b20e5cc3c4dac4ade6dfc9976e6e17f9e17c08a56d0b065c24c5b1f
-
SSDEEP
192:fS+vkcDKmOLsatHxxmbHjvBZAfTmsrusMJJ9kxxmbH0BZAfTjrusMJJQkcDKmSSB:jkcDKmO4atHxxmbHjvBZAfTmsrusMJJt
Malware Config
Targets
-
-
Target
bins.sh
-
Size
10KB
-
MD5
338302d32b0c3daa345d1ebffb6314f9
-
SHA1
0528a9a253f44da40da1b66bde7f13c7f7d05c29
-
SHA256
192bdbc63fcf19c1055403aca1d45f2e23f722da1612e71c946a90773f9982fe
-
SHA512
9b6c15351c97741cf60e149af324ff7595b853ebb0cbbd80aad8fbd650aebb3460cc38ee8b20e5cc3c4dac4ade6dfc9976e6e17f9e17c08a56d0b065c24c5b1f
-
SSDEEP
192:fS+vkcDKmOLsatHxxmbHjvBZAfTmsrusMJJ9kxxmbH0BZAfTjrusMJJQkcDKmSSB:jkcDKmO4atHxxmbHjvBZAfTmsrusMJJt
Score7/10-
File and Directory Permissions Modification
Adversaries may modify file or directory permissions to evade defenses.
-
Executes dropped EXE
-
Renames itself
-
Creates/modifies Cron job
Cron allows running tasks on a schedule, and is commonly used for malware persistence.
-
Enumerates running processes
Discovers information about currently running processes on the system
-
MITRE ATT&CK Enterprise v15
Defense Evasion
File and Directory Permissions Modification
1Linux and Mac File and Directory Permissions Modification
1Virtualization/Sandbox Evasion
1System Checks
1