wget.sh

First submission 2024-09-30 21:42:01 Last sumbission 2024-09-30 21:43:01

File details

File type: POSIX shell script, ASCII text executable
Mime type: text/x-shellscript
File size: 0.97 KB (990 bytes)
MD5: 13e56cd28a8e73ab37d16b489f309de2
SHA1: c935a7e316f837499b3cd5516ce301745cb32c43
SHA256: ad1ab2d50bbd24dd3310d0dc3e016a67e4a7b0c42f615c4fe71196b2befdf988

File features detected

Is DLL
Packers
Anti Debug
Anti VM
Signed
XOR

OSINT Enrichments

Virus Total: 29/77 VT report date: 2024-09-24 20:42:53
Malware Type 2 trojan downloader
Threat Type 3 shell bashdlod gen2

URLs, FQDN and IP indicators 2

URL Host (FQDN/IP) Date Added
hXXp://clavity.me/wget.sh VirusTotal Report clavity.me VirusTotal Report 2024-09-30 21:43:04
hXXp://www.clavity.me/wget.sh VirusTotal Report www.clavity.me VirusTotal Report 2024-09-30 21:42:02

Strings analysis - Possible IPs found 1

185.157.247.125

Strings analysis - Possible URLs found 8

http://185.157.247.125/sh4
http://185.157.247.125/ppc
http://185.157.247.125/mpsl
http://185.157.247.125/mips
http://185.157.247.125/arc
http://185.157.247.125/arm7
http://185.157.247.125/arm5
http://185.157.247.125/arm