main
First submission 2024-10-18 07:18:07
File details
| File type: | Zip archive data, at least v1.0 to extract |
| Mime type: | application/zip |
| File size: | 43377.97 KB (44419044 bytes) |
| MD5: | 4dac487f4f5d7c83fa41623a7cde7378 |
| SHA1: | 8a61d3db9e336a2a1e98bf5c9e32dc1d70a80264 |
| SHA256: | 7797302c3d6c58ee14c54d96284dcabc96b32c855a590e2809f560d7969d1cdd |
File features detected
Is DLL
Packers
Anti Debug
Anti VM
Signed
XOR
OSINT Enrichments
| Virus Total: | 24/77 VT report date: 2024-10-16 17:30:58 |
| Malware Type 1 | trojan |
| Threat Type 2 | gkxo python |
URLs, FQDN and IP indicators 1
| URL | Host (FQDN/IP) | Date Added |
|---|---|---|
hXXps://codeload.github.com/spc0cps/S1/zip/refs/heads/main  |
codeload.github.com |
2024-10-18 07:18:07 |
Strings analysis - File found
| Object |
| $.OCX |
| Linker File |
| Arkham Shadow.lnk |
| Library |
| DLLs/sqlite3.dll |
| Package/dist/Batman/_internal/libcrypto-3.dll |
| vcruntime140.dll |
| DLLs/tk86t.dll |
| Package/dist/Batman/_internal/python312.dll |
| DLLs/libffi-8.dll |
| python311.dll |
| DLLs/libcrypto-3.dll |
| Lib/site-packages/pywin32_system32/pywintypes311.dll |
| Package/dist/Batman/_internal/libssl-3.dll |
| Package/dist/Batman/_internal/python311.dll |
| DLLs/tcl86t.dll |
| Package/dist/Batman/_internal/VCRUNTIME140.dll |
Strings analysis - Possible IPs found 1
| 2.2.1.3 |