NwjCWnVGO624lMhHpzt0SgZ09k6Jx7YmVF
First submission 2024-08-26 17:19:01
Last sumbission 2024-10-15 14:59:02
File details
| File type: | ELF 32-bit MSB executable, MIPS, MIPS-I version 1 (SYSV), statically linked, not stripped |
| Mime type: | application/x-executable |
| File size: | 129.26 KB (132358 bytes) |
| MD5: | 54bec959d900ad930dc662f8092da57d |
| SHA1: | 9ae7ad9018eeac5aa89bcde68ec683a364ac7d55 |
| SHA256: | b62a7cb65dda1cb1ae995b13b62d20289f43b7bc560211484cfdc98c0d9b5f12 |
File features detected
Is DLL
Packers
Anti Debug
Anti VM
Signed
XOR
OSINT Enrichments
| Virus Total: | 23/78 VT report date: 2024-08-25 23:55:10 |
| Malware Type 1 | trojan |
| Threat Type 3 | mirai gafgyt possible |
URLs, FQDN and IP indicators 2
| URL | Host (FQDN/IP) | Date Added |
|---|---|---|
hXXp://87.120.84.230/bins/NwjCWnVGO624lMhHpzt0SgZ09k6Jx7YmVF  |
87.120.84.230 |
2024-10-15 14:59:06 |
| hXXp://87.120.84.230/bins/GQOvTSEXoMYG8WAqYTJ5z1qUHFC7kMmiGi |
87.120.84.230 |
2024-10-12 16:51:04 |
Strings analysis - Possible IPs found 2
| 8.8.8.8 |
| 192.168.1.1 |