firmware.arc

First submission 2024-09-01 17:00:02 Last sumbission 2024-09-01 18:58:02

File details

File type: ELF 32-bit LSB executable, ARC Cores Tangent-A5, version 1 (SYSV), statically linked, for GNU/Linux 4.8.0, stripped
Mime type: application/x-executable
File size: 137.59 KB (140892 bytes)
MD5: 06e78652f070a6604bc8d0d3fd6e37ad
SHA1: 27a54a09a982ecb642f94c76e0223b009ff7f5f6
SHA256: e81c24303826c74dd7de61b46911f7d087300e0cc37996a678c079255ac6d9b0

File features detected

Is DLL
Packers
Anti Debug
Anti VM
Signed
XOR

OSINT Enrichments

Virus Total: 35/78 VT report date: 2024-09-01 17:29:17
Malware Type 1 trojan
Threat Type 3 mirai gafgyt bonb

URLs, FQDN and IP indicators 3

URL Host (FQDN/IP) Date Added
hXXp://shayan.90.ydns.eu/firmware/firmware.arc VirusTotal Report shayan.90.ydns.eu VirusTotal Report 2024-09-01 18:58:03
hXXp://ckea.ru/firmware/firmware.arc VirusTotal Report ckea.ru VirusTotal Report 2024-09-01 17:26:03
hXXp://45.159.211.121/firmware/firmware.arc VirusTotal Report 45.159.211.121 VirusTotal Report 2024-09-01 17:00:02

Strings analysis - Possible IPs found 1

8.8.8.8