main
First submission 2024-10-18 07:19:05
File details
| File type: | Zip archive data, at least v1.0 to extract |
| Mime type: | application/zip |
| File size: | 21334.89 KB (21846924 bytes) |
| MD5: | 434a8620351d91e9080cc5d41b50b204 |
| SHA1: | 8fe45f22e33b85a66388c371a18aacc5bd8d5cb1 |
| SHA256: | ea48bafc220105451792dd4850dd048b6f1a596b7ec6060882098549662ab5f5 |
File features detected
Is DLL
Packers
Anti Debug
Anti VM
Signed
XOR
OSINT Enrichments
| Virus Total: | 8/77 VT report date: 2024-10-16 17:30:42 |
| Malware Type 1 | trojan |
| Threat Type 1 | gkxo |
URLs, FQDN and IP indicators 1
| URL | Host (FQDN/IP) | Date Added |
|---|---|---|
hXXps://codeload.github.com/joh81/exploi01/zip/refs/heads/main  |
codeload.github.com |
2024-10-18 07:19:05 |
Strings analysis - File found
| Library |
| DLLs/libcrypto-3.dll |
| vcruntime140.dll |
| DLLs/sqlite3.dll |
| DLLs/tk86t.dll |
| DLLs/tcl86t.dll |
| Lib/site-packages/pywin32_system32/pywintypes311.dll |
| python311.dll |
| DLLs/libffi-8.dll |
| Lib/site-packages/win32/perfmondata.dll |
Strings analysis - Possible IPs found 1
| 2.2.1.3 |