General

  • Target

    bins.sh

  • Size

    10KB

  • Sample

    241128-c1ad3sxnbp

  • MD5

    208a150f8005f432991ea28dbe642896

  • SHA1

    f4fdb2f0b2842c8a94a8f2757c40e11dadedaaca

  • SHA256

    1373f5b97ca92c777762fbc6638e75a21a2bfd0887d959e7bd8c6e37ff980568

  • SHA512

    7a6d7219edada6a2c1f329cfd156b3c928b61dede70138a3cc41cbffcd04180e52a1202185c9b171b30884888e9b83cdffb1c16ef88ef1a7aa96d34cdfa818bf

  • SSDEEP

    96:Yxp3B557pypKpjSucLnmLlF1Ln7cLVtVtVudp3E2EmEmxFz/TThZjRXrTLB5ULFb:cYAjSu1Fc9jTmxF1QySjTmxFjYAjSuQ

Malware Config

Targets

    • Target

      bins.sh

    • Size

      10KB

    • MD5

      208a150f8005f432991ea28dbe642896

    • SHA1

      f4fdb2f0b2842c8a94a8f2757c40e11dadedaaca

    • SHA256

      1373f5b97ca92c777762fbc6638e75a21a2bfd0887d959e7bd8c6e37ff980568

    • SHA512

      7a6d7219edada6a2c1f329cfd156b3c928b61dede70138a3cc41cbffcd04180e52a1202185c9b171b30884888e9b83cdffb1c16ef88ef1a7aa96d34cdfa818bf

    • SSDEEP

      96:Yxp3B557pypKpjSucLnmLlF1Ln7cLVtVtVudp3E2EmEmxFz/TThZjRXrTLB5ULFb:cYAjSu1Fc9jTmxF1QySjTmxFjYAjSuQ

    • File and Directory Permissions Modification

      Adversaries may modify file or directory permissions to evade defenses.

    • Executes dropped EXE

    • Renames itself

    • Creates/modifies Cron job

      Cron allows running tasks on a schedule, and is commonly used for malware persistence.

    • Enumerates running processes

      Discovers information about currently running processes on the system

MITRE ATT&CK Enterprise v15

Tasks