OJIMJIXhejBK4i63rsC7KWDSXHyLeuAMfV
First submission 2024-10-12 17:05:03
Last sumbission 2024-10-17 03:30:02
File details
| File type: | ELF 32-bit LSB executable, ARM, version 1 (ARM), statically linked, with debug_info, not stripped |
| Mime type: | application/x-executable |
| File size: | 100.77 KB (103192 bytes) |
| MD5: | 3b78bb645b81d600c30713d416f666be |
| SHA1: | 23796112f2cce2afb2217498b5ecf2801ab550f2 |
| SHA256: | d52f8bcb15a590aa5624c446091f1cd0705b68e4647debaeecf8cfa1fe425bd2 |
File features detected
Is DLL
Packers
Anti Debug
Anti VM
Signed
XOR
OSINT Enrichments
| Virus Total: | 42/77 VT report date: 2024-08-27 19:41:27 |
| Malware Type 1 | trojan |
| Threat Type 3 | mirai gafgyt gldnc |
URLs, FQDN and IP indicators 4
| URL | Host (FQDN/IP) | Date Added |
|---|---|---|
hXXp://conn.masjesu.zip/bins/OJIMJIXhejBK4i63rsC7KWDSXHyLeuAMfV  |
conn.masjesu.zip |
2024-10-17 03:30:06 |
| hXXp://87.120.126.196/bins/RavulrRjVV4A6kwn4BPEB7ipKRk6cBZSow |
87.120.126.196 |
2024-10-15 15:59:04 |
| hXXp://87.120.84.230/bins/RavulrRjVV4A6kwn4BPEB7ipKRk6cBZSow |
87.120.84.230 |
2024-10-15 14:54:06 |
| hXXp://87.120.84.230/bins/utf7e3EQaj0FA5AiW8Q3UDOjsLbbIZImvp |
87.120.84.230 |
2024-10-12 17:05:03 |
Strings analysis - Possible IPs found 2
| 8.8.8.8 |
| 192.168.1.1 |