DigitalSide Threat Intel

%D0%9F%D0%B0%D0%BA%D0%B8.rar

First submission 2024-10-16 23:57:02

File details

File type: RAR archive data, v5
Mime type: application/x-rar
File size: 37.15 KB (38043 bytes)
MD5: 21b710173d40350fc8e82dba01159908
SHA1: 1adfb0264a644f5697effad5bdbf3c408c646a1c
SHA256: 044f5254cc209825511ed268a514f1e19b3e9e004506a7b36ce8f201fee91808

File features detected

Is DLL
Packers
Anti Debug
Anti VM
Signed
XOR

OSINT Enrichments

Virus Total: 35/75 VT report date: 2020-05-09 03:15:12

URLs, FQDN and IP indicators 1

URL Host (FQDN/IP) Date Added
hXXps://raw.githubusercontent.com/Gleb221/paki/master/%D0%9F%D0%B0%D0%BA%D0%B8.rar VirusTotal Report raw.githubusercontent.com VirusTotal Report 2024-10-16 23:57:03

Strings analysis - File found

Text
/temp.txt
Library
USER32.dll
AVICAP32.dll
mscoree.dll
KERNEL32.dll
WINMM.dll

Strings analysis - Possible IPs found 1

46.109.131.147

Strings analysis - Possible URLs found 1

https://dl.dropbox.com/s/p84aaz28t0hepul/Pass.exe?dl=0