main
First submission 2024-10-18 07:16:04
File details
| File type: | Zip archive data, at least v1.0 to extract |
| Mime type: | application/zip |
| File size: | 14778.59 KB (15133277 bytes) |
| MD5: | 3da7dca2917187ac26074e0de52ec7c4 |
| SHA1: | 6ca2ddbf0f53ba1fd08e2e70eec60fc17513bd28 |
| SHA256: | c45b1a3c13aba6436bbb90c6f07ab7730062af55d501fd312051a2fba3305d01 |
File features detected
Is DLL
Packers
Anti Debug
Anti VM
Signed
XOR
OSINT Enrichments
| Virus Total: | 18/77 VT report date: 2024-10-16 17:30:42 |
| Malware Type 2 | trojan virus |
| Threat Type 3 | lazagne pswtool python |
URLs, FQDN and IP indicators 1
| URL | Host (FQDN/IP) | Date Added |
|---|---|---|
hXXps://codeload.github.com/T1-8888/T1-vavava/zip/refs/heads/main  |
codeload.github.com |
2024-10-18 07:16:05 |
Strings analysis - File found
| Executable |
| [8M.sO |
| Database |
| tpn.db |
| Library |
| DLLs/libcrypto-1_1.dll |
| DLLs/libssl-1_1.dll |
| DLLs/libffi-7.dll |
| cruntime140_1.dll |
| python310.dll |
| vcruntime140.dll |
| DLLs/sqlite3.dll |
Strings analysis - Possible IPs found 1
| 3.4.5.3 |