b

First submission 2024-08-31 02:46:02

File details

File type: POSIX shell script, ASCII text executable
Mime type: text/x-shellscript
File size: 2.32 KB (2375 bytes)
MD5: 44a31f30658f008450dd21e8461fdc85
SHA1: 5a08faec9a25e3af26f68224cd54b37d1f01fb75
SHA256: 4d453389ad1faafb1d2f9a51df0743358696eb5a492cad98512f5efc1f3266db

File features detected

Is DLL
Packers
Anti Debug
Anti VM
Signed
XOR

OSINT Enrichments

Virus Total: 9/78 VT report date: 2024-08-31 01:41:09
Malware Type 2 downloader trojan
Threat Type 3 shell bashdlod mirai

URLs, FQDN and IP indicators 1

URL Host (FQDN/IP) Date Added
hXXp://154.216.17.171/b VirusTotal Report 154.216.17.171 VirusTotal Report 2024-08-31 02:46:02

Strings analysis - Possible IPs found 1

154.216.18.237

Strings analysis - Possible URLs found 9

http://154.216.18.237/earm7
http://154.216.18.237/earm6
http://154.216.18.237/earm5
http://154.216.18.237/empsl
http://154.216.18.237/emips
http://154.216.18.237/esh4
http://154.216.18.237/earm
http://154.216.18.237/earc
http://154.216.18.237/eppc