Overview

overview

6

Static

static

3

zapret-win...64.cmd

windows7-x64

1

zapret-win...64.cmd

windows10-2004-x64

1

zapret-win...et.exe

windows7-x64

zapret-win...et.exe

windows10-2004-x64

zapret-win...ig.exe

windows7-x64

zapret-win...ig.exe

windows10-2004-x64

zapret-win...ck.cmd

windows7-x64

5

zapret-win...ck.cmd

windows10-2004-x64

5

zapret-win...eck.sh

ubuntu-18.04-amd64

6

zapret-win...eck.sh

debian-9-armhf

6

zapret-win...eck.sh

debian-9-mips

6

zapret-win...eck.sh

debian-9-mipsel

6

zapret-win...log.sh

ubuntu-18.04-amd64

3

zapret-win...log.sh

debian-9-armhf

3

zapret-win...log.sh

debian-9-mips

3

zapret-win...log.sh

debian-9-mipsel

3

zapret-win...ase.sh

windows7-x64

3

zapret-win...ase.sh

windows10-2004-x64

3

zapret-win...log.sh

windows7-x64

3

zapret-win...log.sh

windows10-2004-x64

3

zapret-win...ate.sh

windows7-x64

3

zapret-win...ate.sh

windows10-2004-x64

3

zapret-win...ype.sh

windows7-x64

3

zapret-win...ype.sh

windows10-2004-x64

3

zapret-win...irt.sh

windows7-x64

3

zapret-win...irt.sh

windows10-2004-x64

3

zapret-win...et.exe

windows7-x64

1

zapret-win...et.exe

windows10-2004-x64

1

zapret-win...ig.exe

windows7-x64

1

zapret-win...ig.exe

windows10-2004-x64

1

zapret-win...rt.dll

windows7-x64

1

zapret-win...rt.dll

windows10-2004-x64

1

Analysis

  • max time kernel
    1s
  • platform
    debian-9_mipsel
  • resource
    debian9-mipsel-20240418-en
  • resource tags

    arch:mipselimage:debian9-mipsel-20240418-enkernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipselsystem
  • submitted
    03-12-2024 16:41

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    zapret-win-bundle-master/blockcheck/zapret/blog.sh

  • Size

    220B

  • MD5

    47fcc2f9d199486b64e3f5c37e0b3920

  • SHA1

    4a79609abab1a5837dbcf32f80655b54828f55f6

  • SHA256

    66f32fa4470cd63a4014da8fa10af11a25862f564e53016d1b790f82c2d83760

  • SHA512

    9c82d52c0a4389bb4c9a7b055c8ca01f3c2a3cba7942c8e76abafa58e7338059f8e07a40bf04f1086b2a340e8e0736abd76707133f119490b0edd13d54171fb4

Score
3/10

Malware Config

Signatures

  • Writes file to tmp directory 1 IoCs

    Malware often drops required files in the /tmp directory.

Processes

  • /tmp/zapret-win-bundle-master/blockcheck/zapret/blog.sh
    /tmp/zapret-win-bundle-master/blockcheck/zapret/blog.sh
    1⤵
      PID:739
      • /usr/bin/dirname
        dirname /tmp/zapret-win-bundle-master/blockcheck/zapret/blog.sh
        2⤵
          PID:740
        • /tmp/zapret-win-bundle-master/blockcheck/zapret/blockcheck.sh
          /tmp/zapret-win-bundle-master/blockcheck/zapret/blockcheck.sh
          2⤵
            PID:742
          • /usr/bin/tee
            tee /tmp/zapret-win-bundle-master/blockcheck/zapret/../blockcheck.log
            2⤵
            • Writes file to tmp directory
            PID:743

        Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads