Overview

overview

10

Static

static

1

bins.sh

ubuntu-18.04-amd64

3

bins.sh

debian-9-armhf

4

bins.sh

debian-9-mips

10

bins.sh

debian-9-mipsel

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    bins.sh

  • Size

    10KB

  • Sample

    241130-zxfg9avphw

  • MD5

    41a9cfa8d65fc7f447a86c05006a99d1

  • SHA1

    d877ea8a4eb062ba3db1aedc1294037d07a52db5

  • SHA256

    6703a1af12e4dd2ca7b26491a6d717cb89e0503b073c06a2dfef3878b0f240ef

  • SHA512

    5fdb1bd620036e5ea47fb7916829b2ff65d36a57b98e49c2975f87f4ae8dab7b571e2fa34591726e3417168ba61d0b9fbc998fbf466bd9f230df83e4810d497c

  • SSDEEP

    96:Yj/TLue1Ln7ELZxBsysKsWVxELWGT0ncr2mgEattd40qU8AYRNRNR4J1gSqu7v7/:YdEC7jWVxENqTPCZRt7jWVx1TPCZRM

Score
10/10
xorbotantivmbotnetdefense_evasiondiscoverylinuxtrojan

Malware Config

Targets

    • Target

      bins.sh

    • Size

      10KB

    • MD5

      41a9cfa8d65fc7f447a86c05006a99d1

    • SHA1

      d877ea8a4eb062ba3db1aedc1294037d07a52db5

    • SHA256

      6703a1af12e4dd2ca7b26491a6d717cb89e0503b073c06a2dfef3878b0f240ef

    • SHA512

      5fdb1bd620036e5ea47fb7916829b2ff65d36a57b98e49c2975f87f4ae8dab7b571e2fa34591726e3417168ba61d0b9fbc998fbf466bd9f230df83e4810d497c

    • SSDEEP

      96:Yj/TLue1Ln7ELZxBsysKsWVxELWGT0ncr2mgEattd40qU8AYRNRNR4J1gSqu7v7/:YdEC7jWVxENqTPCZRt7jWVx1TPCZRM

    Score
    10/10
    discoveryantivmxorbotbotnetdefense_evasiontrojan

    • Detects Xorbot

      botnettrojan

    • Xorbot

      Xorbot is a linux botnet and trojan targeting IoT devices.

      botnettrojanxorbot

    • Xorbot family

      xorbot

    • File and Directory Permissions Modification

      Adversaries may modify file or directory permissions to evade defenses.

      defense_evasion

    • Executes dropped EXE

    behavioral1behavioral2behavioral3behavioral4

MITRE ATT&CK Enterprise v15

Tasks