f1e174b1d227f565f874156a1ed092123bfc4421c41ef3b7eb9f57d85b94a109 | Triage

Sharing

General

Target

f1e174b1d227f565f874156a1ed092123bfc4421c41ef3b7eb9f57d85b94a109.sh
Size

10KB
Sample

241121-krq98svnak
MD5

5c002a675bf13d9254cbcf71d0880ad7
SHA1

6b23ac737bbb2a21a5e8e322b7a85ce0bd035c04
SHA256

f1e174b1d227f565f874156a1ed092123bfc4421c41ef3b7eb9f57d85b94a109
SHA512

66f9f99ad03a2a5b56bb54c3676f86d33a5d7e165bf9d7c1e43da38c2005258128fcf95746bc924ca55f6dae423b1f7762bce982455e40fc33534ac37d545a7f
SSDEEP

192:mLvHEMP7PbcMUXRRJOC1WKbD+DyDxe+qfr97COC7xN7877P3XS7eSsaTXkfrFOCY:gEamxe+OOzgvSonamxe+0SO

Score

7^/10

antivm defense_evasion discovery linux

Malware Config

Targets

- Target
  
  f1e174b1d227f565f874156a1ed092123bfc4421c41ef3b7eb9f57d85b94a109.sh
- Size
  
  10KB
- MD5
  
  5c002a675bf13d9254cbcf71d0880ad7
- SHA1
  
  6b23ac737bbb2a21a5e8e322b7a85ce0bd035c04
- SHA256
  
  f1e174b1d227f565f874156a1ed092123bfc4421c41ef3b7eb9f57d85b94a109
- SHA512
  
  66f9f99ad03a2a5b56bb54c3676f86d33a5d7e165bf9d7c1e43da38c2005258128fcf95746bc924ca55f6dae423b1f7762bce982455e40fc33534ac37d545a7f
- SSDEEP
  
  192:mLvHEMP7PbcMUXRRJOC1WKbD+DyDxe+qfr97COC7xN7877P3XS7eSsaTXkfrFOCY:gEamxe+OOzgvSonamxe+0SO
Score

7^/10

defense_evasion antivm discovery
- File and Directory Permissions Modification
  Adversaries may modify file or directory permissions to evade defenses.
  defense_evasion
- Executes dropped EXE
behavioral1 behavioral2 behavioral3 behavioral4

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

File and Directory Permissions Modification

Linux and Mac File and Directory Permissions Modification

Virtualization/Sandbox Evasion

System Checks

Credential Access

Discovery

Virtualization/Sandbox Evasion

System Checks

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

defense_evasion

behavioral2

antivmdefense_evasiondiscovery

behavioral3

defense_evasiondiscovery

behavioral4

defense_evasiondiscovery