General
-
Target
8UsA.sh
-
Size
1KB
-
Sample
241102-e38e1axmex
-
MD5
708cae4cf814c3deda4208da228fad4e
-
SHA1
36718f87b1a7d742a991f06f7ce396f70d457861
-
SHA256
9dd52ca3bd9dd62a4ad017f93c39e0f6855cb9b9d9b01656e6cd71593619dc2a
-
SHA512
58584fc22497be264b532dbad3bbf88c0a13a133266c75013fea1d4a2fba025ac4422885afb4cd1caa57380c5ac842ea5a15df3eb77fdae5a34950c25ae94bfd
Static task
static1
Behavioral task
behavioral1
Sample
8UsA.sh
Resource
ubuntu1804-amd64-20240611-en
Behavioral task
behavioral2
Sample
8UsA.sh
Resource
debian9-armhf-20240611-en
Behavioral task
behavioral3
Sample
8UsA.sh
Resource
debian9-mipsbe-20240611-en
Behavioral task
behavioral4
Sample
8UsA.sh
Resource
debian9-mipsel-20240611-en
Malware Config
Extracted
mirai
JOSHO
Extracted
mirai
JOSHO
Extracted
mirai
JOSHO
Targets
-
-
Target
8UsA.sh
-
Size
1KB
-
MD5
708cae4cf814c3deda4208da228fad4e
-
SHA1
36718f87b1a7d742a991f06f7ce396f70d457861
-
SHA256
9dd52ca3bd9dd62a4ad017f93c39e0f6855cb9b9d9b01656e6cd71593619dc2a
-
SHA512
58584fc22497be264b532dbad3bbf88c0a13a133266c75013fea1d4a2fba025ac4422885afb4cd1caa57380c5ac842ea5a15df3eb77fdae5a34950c25ae94bfd
-
Mirai family
-
File and Directory Permissions Modification
Adversaries may modify file or directory permissions to evade defenses.
-
Executes dropped EXE
-
Modifies Watchdog functionality
Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
-
MITRE ATT&CK Enterprise v15
Defense Evasion
File and Directory Permissions Modification
1Linux and Mac File and Directory Permissions Modification
1Impair Defenses
1Virtualization/Sandbox Evasion
1System Checks
1