Mozi.m

First submission 2023-06-23 17:51:03 Last sumbission 2023-10-01 07:31:04

File details

File type:	ELF 32-bit MSB executable, MIPS, MIPS-I version 1 (SYSV), statically linked, no section header
Mime type:	application/x-executable
File size:	132.6 KB (135784 bytes)
MD5:	59ce0baba11893f90527fc951ac69912
SHA1:	5857a7dd621c4c3ebb0b5a3bec915d409f70d39f
SHA256:	4293c1d8574dc87c58360d6bac3daa182f64f7785c9d41da5e0741d2b1817fc7
Virus Total:	44/61 VT report date: 2023-06-23 14:31:09

File features detected

Is DLL

Packers

Anti Debug

Anti VM

Signed

XOR

URLs, FQDN and IP indicators 75

URL	Host (FQDN/IP)	Date Added
hXXp://42.235.101.36:41695/Mozi.m	42.235.101.36	2023-10-01 07:31:05
hXXp://112.247.85.97:46519/Mozi.m	112.247.85.97	2023-10-01 05:13:05
hXXp://42.227.201.202:45566/Mozi.m	42.227.201.202	2023-09-30 23:12:05
hXXp://221.14.57.36:55467/i	221.14.57.36	2023-09-30 22:31:04
hXXp://151.53.99.211:36320/Mozi.m	151.53.99.211	2023-09-30 20:52:44
hXXp://182.126.117.6:34021/Mozi.m	182.126.117.6	2023-09-30 20:31:04
hXXp://116.212.142.18:45210/Mozi.m	116.212.142.18	2023-09-30 20:11:04
hXXp://112.248.190.88:44901/Mozi.m	112.248.190.88	2023-09-30 14:51:04
hXXp://182.121.164.155:37815/i	182.121.164.155	2023-09-30 11:52:04
hXXp://123.10.227.254:47874/i	123.10.227.254	2023-09-30 09:31:05
hXXp://27.202.58.19:45823/Mozi.m	27.202.58.19	2023-09-30 08:11:04
hXXp://151.53.99.211:36320/i	151.53.99.211	2023-09-30 06:51:09
hXXp://27.215.110.136:48200/Mozi.m	27.215.110.136	2023-09-30 05:15:05
hXXp://59.92.40.187:37514/Mozi.m	59.92.40.187	2023-09-30 04:11:05
hXXp://112.248.187.148:42485/Mozi.m	112.248.187.148	2023-09-29 16:39:06
hXXp://182.127.128.56:32866/Mozi.m	182.127.128.56	2023-09-29 14:22:05
hXXp://115.58.132.94:34461/Mozi.m	115.58.132.94	2023-09-29 11:42:05
hXXp://62.122.238.167:52787/Mozi.m	62.122.238.167	2023-09-29 08:41:11
hXXp://62.122.236.238:41663/Mozi.m	62.122.236.238	2023-09-29 08:01:04
hXXp://182.117.89.211:47874/i	182.117.89.211	2023-09-29 06:44:05
hXXp://123.14.152.183:55467/i	123.14.152.183	2023-09-29 06:43:04
hXXp://62.122.236.156:55554/Mozi.m	62.122.236.156	2023-09-29 05:42:04
hXXp://62.122.238.167:38707/Mozi.m	62.122.238.167	2023-09-29 01:43:06
hXXp://115.58.91.202:39573/i	115.58.91.202	2023-09-28 23:01:05
hXXp://62.122.232.77:60537/Mozi.m	62.122.232.77	2023-09-28 22:42:04
hXXp://87.255.217.158:40823/Mozi.m	87.255.217.158	2023-09-28 17:41:04
hXXp://151.73.19.166:36320/i	151.73.19.166	2023-09-28 16:23:32
hXXp://115.62.162.166:41252/Mozi.m	115.62.162.166	2023-09-28 10:41:05
hXXp://62.122.232.102:57399/Mozi.m	62.122.232.102	2023-09-28 08:25:05
hXXp://42.234.246.212:53360/Mozi.m	42.234.246.212	2023-09-28 06:41:05
hXXp://182.121.196.14:59335/i	182.121.196.14	2023-09-28 02:41:05
hXXp://42.235.163.150:37815/i	42.235.163.150	2023-09-27 22:41:05
hXXp://222.140.183.138:56270/i	222.140.183.138	2023-09-27 20:41:04
hXXp://222.140.183.138:56270/bin.sh	222.140.183.138	2023-09-27 20:02:05
hXXp://175.107.12.106:50287/i	175.107.12.106	2023-09-27 16:23:11
hXXp://175.107.12.106:50287/bin.sh	175.107.12.106	2023-09-27 16:01:26
hXXp://201.150.181.48:60792/Mozi.m	201.150.181.48	2023-09-27 15:42:04
hXXp://201.150.173.84:53974/Mozi.m	201.150.173.84	2023-09-27 14:21:04
hXXp://182.121.53.104:45454/i	182.121.53.104	2023-09-27 07:50:04
hXXp://182.117.11.40:33856/i	182.117.11.40	2023-09-27 05:23:05
hXXp://182.117.11.40:33856/bin.sh	182.117.11.40	2023-09-27 04:42:05
hXXp://39.79.95.127:46738/i	39.79.95.127	2023-09-27 04:21:04
hXXp://182.116.90.152:54275/Mozi.m	182.116.90.152	2023-09-26 23:43:05
hXXp://182.125.95.133:44378/Mozi.m	182.125.95.133	2023-09-26 21:04:05
hXXp://182.121.49.226:45454/i	182.121.49.226	2023-09-26 20:41:05
hXXp://125.46.159.174:57366/Mozi.m	125.46.159.174	2023-09-26 18:23:05
hXXp://115.63.52.211:52097/Mozi.m	115.63.52.211	2023-09-26 17:23:06
hXXp://182.116.88.235:53360/Mozi.m	182.116.88.235	2023-09-26 16:49:05
hXXp://123.129.56.14:52764/Mozi.m	123.129.56.14	2023-09-26 10:41:04
hXXp://221.15.76.224:37815/i	221.15.76.224	2023-09-26 09:01:04
hXXp://185.32.4.68:36571/Mozi.m	185.32.4.68	2023-09-26 06:02:04
hXXp://218.29.30.113:55478/Mozi.m	218.29.30.113	2023-09-26 05:42:04
hXXp://151.73.19.166:36320/Mozi.m	151.73.19.166	2023-09-26 03:22:13
hXXp://201.150.175.179:41997/i	201.150.175.179	2023-09-26 02:42:05
hXXp://115.56.99.231:48210/Mozi.m	115.56.99.231	2023-09-26 01:41:04
hXXp://42.230.45.196:39573/i	42.230.45.196	2023-09-26 00:41:05
hXXp://115.59.23.204:54826/Mozi.m	115.59.23.204	2023-09-25 22:41:05
hXXp://202.178.113.234:45058/Mozi.m	202.178.113.234	2023-09-25 20:43:04
hXXp://219.156.131.80:55478/Mozi.m	219.156.131.80	2023-09-25 20:21:05
hXXp://182.113.20.237:54834/Mozi.m	182.113.20.237	2023-09-25 15:43:05
hXXp://115.50.93.106:46057/Mozi.m	115.50.93.106	2023-09-25 15:21:05
hXXp://182.121.196.34:59335/i	182.121.196.34	2023-09-25 10:31:05
hXXp://182.121.119.24:58250/Mozi.m	182.121.119.24	2023-09-25 08:01:05
hXXp://219.155.14.47:34952/Mozi.m	219.155.14.47	2023-09-25 06:41:05
hXXp://117.74.124.216:41561/Mozi.m	117.74.124.216	2023-09-25 05:43:04
hXXp://42.237.22.108:43145/Mozi.m	42.237.22.108	2023-09-25 04:21:04
hXXp://61.53.85.194:40792/Mozi.m	61.53.85.194	2023-09-24 22:41:04
hXXp://61.53.85.194:40792/i	61.53.85.194	2023-09-24 18:02:05
hXXp://115.59.23.204:54826/Mozi.a	115.59.23.204	2023-09-24 16:41:05
hXXp://125.41.7.138:32992/Mozi.m	125.41.7.138	2023-09-24 14:21:05
hXXp://115.63.10.3:45566/Mozi.m	115.63.10.3	2023-09-24 13:41:05
hXXp://190.109.228.94:58237/Mozi.m	190.109.228.94	2023-09-24 10:21:05
hXXp://115.50.93.106:46057/i	115.50.93.106	2023-09-24 10:01:05
hXXp://115.58.170.129:48656/i	115.58.170.129	2023-09-24 09:33:06
hXXp://182.121.20.182:45895/Mozi.m	182.121.20.182	2023-09-24 08:21:06

Strings analysis - File found

XML
M7c.xml

Strings analysis - Possible URLs found 1

http://upx.sf.net