bot.x86

First submission 2024-09-03 10:24:02 Last sumbission 2024-09-03 11:19:01

File details

File type: ELF 32-bit LSB executable, Intel 80386, version 1 (SYSV), statically linked, stripped
Mime type: application/x-executable
File size: 91.57 KB (93768 bytes)
MD5: 5d8c87ae7feeac7ec576fc361df6a708
SHA1: f01414663328477b900b6109e56ad13aa4a75fa3
SHA256: deb8f5782bca1d5a04a449584f5a81cd88024901dc4a11d9afd2764a66604d8f

File features detected

Is DLL
Packers
Anti Debug
Anti VM
Signed
XOR

OSINT Enrichments

Virus Total: 41/79 VT report date: 2024-09-03 09:50:15
Malware Type 1 trojan
Threat Type 2 mirai gafgyt

URLs, FQDN and IP indicators 3

URL Host (FQDN/IP) Date Added
hXXp://185.196.9.222/bot.x86 VirusTotal Report 185.196.9.222 VirusTotal Report 2024-09-03 11:19:02
hXXp://chrome.webredirect.org/bot.x86 VirusTotal Report chrome.webredirect.org VirusTotal Report 2024-09-03 10:25:03
hXXp://captcha.webredirect.org/bot.x86 VirusTotal Report captcha.webredirect.org VirusTotal Report 2024-09-03 10:24:02

Strings analysis - Possible IPs found 2

255.255.255.255
127.0.0.1