x86

First submission 2022-04-03 22:01:02

File details

File type: ELF 32-bit LSB executable, Intel 80386, version 1 (SYSV), statically linked, stripped
File type: 50.3 KB (51508 bytes)
MD5: 43130659117e765cf28ba1c4ea3ee2a5
SHA1: b6e9612bfb8f0d7133865ac8239b49fccbe72301
SHA256: a2a88ee7c7e131465a641d9218f71ab8e1c1094c44036f605da39ba0d8195c95
Virus Total: 39/59 VT report date: 2022-06-23 20:02:43

File features detected

Is DLL

Packers

Anti Debug

Anti VM

Signed

XOR

URLs, FQDN and IP indicators 6

URL Host (FQDN/IP) Date Added
hXXp://194.31.98.169/uwu/x86 VirusTotal Report 194.31.98.169 VirusTotal Report 2022-04-03 22:01:02
hXXp://2.56.59.232/uwu/x86 VirusTotal Report 2.56.59.232 VirusTotal Report 2022-05-11 23:57:05
hXXp://85.202.169.170/uwu/x86 VirusTotal Report 85.202.169.170 VirusTotal Report 2022-05-18 03:58:05
hXXp://194.31.98.104/uwu/x86 VirusTotal Report 194.31.98.104 VirusTotal Report 2022-06-08 23:46:05
hXXp://194.31.98.104/uwu//x86 VirusTotal Report 194.31.98.104 VirusTotal Report 2022-06-23 22:34:05
hXXp://107.182.129.226/uwu/x86 VirusTotal Report 107.182.129.226 VirusTotal Report 2022-08-01 11:50:05

Strings analysis - Possible IPs found 2

156.96.151.226
23.254.230.120