DigitalSide Threat Intel

J2xTDnI38Dgw5VyKuwWqNinmomfDKf5Jdm

First submission 2024-08-26 05:18:02 Last sumbission 2024-10-17 03:38:03

File details

File type: ELF 32-bit LSB executable, Intel 80386, version 1 (SYSV), statically linked, not stripped
Mime type: application/x-executable
File size: 80.62 KB (82560 bytes)
MD5: 22c527269cbd9b42f4ade79f52757efb
SHA1: c2456188a49af93b0d07af2a7cc1346d5be510bd
SHA256: 100042d7138b4348a13c54c191d501d125b7fea7631382e7d0e9d7251057ce97

File features detected

Is DLL
Packers
Anti Debug
Anti VM
Signed
XOR

OSINT Enrichments

Virus Total: 22/79 VT report date: 2024-08-25 23:55:05
Malware Type 1 trojan
Threat Type 3 mirai gafgyt possible

URLs, FQDN and IP indicators 4

URL Host (FQDN/IP) Date Added
hXXp://conn.masjesu.zip/bins/J2xTDnI38Dgw5VyKuwWqNinmomfDKf5Jdm VirusTotal Report conn.masjesu.zip VirusTotal Report 2024-10-17 03:38:07
hXXp://87.120.84.230/bins/QVxiV2PcuzKm9mDrJwEjYHrvF6kSDPYS7L VirusTotal Report 87.120.84.230 VirusTotal Report 2024-10-15 15:38:03
hXXp://87.120.126.196/bins/QVxiV2PcuzKm9mDrJwEjYHrvF6kSDPYS7L VirusTotal Report 87.120.126.196 VirusTotal Report 2024-10-15 14:58:04
hXXp://87.120.84.230/bins/q6quTDSPS3xO9HBBUQF8bWGmFAfjVTG4fq VirusTotal Report 87.120.84.230 VirusTotal Report 2024-10-12 17:08:04

Strings analysis - Possible IPs found 1

8.8.8.8