avtech.sh

First submission 2024-09-04 15:41:01

File details

File type: POSIX shell script, ASCII text executable, with CRLF line terminators
Mime type: text/x-shellscript
File size: 0.6 KB (619 bytes)
MD5: 105719a034a1b13b52891c45030a2bb1
SHA1: 37b2ac5dff85d18b31968ec1f59967fef755e8bc
SHA256: 541537d357e780ca15a8de5f5fecd3dd8bad352d405ea86b12d969162e3a5265

File features detected

Is DLL
Packers
Anti Debug
Anti VM
Signed
XOR

OSINT Enrichments

Virus Total: 12/79 VT report date: 2024-09-04 15:35:07
Malware Type 2 downloader trojan
Threat Type 3 shell gen2 mirai

URLs, FQDN and IP indicators 1

URL Host (FQDN/IP) Date Added
hXXp://154.216.17.217/avtech.sh VirusTotal Report 154.216.17.217 VirusTotal Report 2024-09-04 15:41:01

Strings analysis - Possible IPs found 1

154.216.17.171

Strings analysis - Possible URLs found 5

http://154.216.17.171/earm5
http://154.216.17.171/earc
http://154.216.17.171/earm
http://154.216.17.171/earm7
http://154.216.17.171/earm6