DigitalSide Threat Intel

xi.ppc

First submission 2024-10-14 17:14:03

File details

File type: ELF 32-bit MSB executable, PowerPC or cisco 4500, version 1 (SYSV), statically linked, stripped
Mime type: application/x-executable
File size: 53.5 KB (54784 bytes)
MD5: 69500ca3952f089777fe807c70e7f0eb
SHA1: 3b41ddc0cecffd199c7a792b2c7aef8d8a8520b0
SHA256: 96ba75e677264f51b6452cc90a380ab0c8babd9973d54670a9f482a4a3fd0b9b

File features detected

Is DLL
Packers
Anti Debug
Anti VM
Signed
XOR

OSINT Enrichments

Virus Total: 37/77 VT report date: 2024-10-14 16:55:19
Malware Type 1 trojan
Threat Type 3 mirai aloa ddos

URLs, FQDN and IP indicators 1

URL Host (FQDN/IP) Date Added
hXXp://103.192.179.5/xi.ppc VirusTotal Report 103.192.179.5 VirusTotal Report 2024-10-14 17:14:03

Strings analysis - Possible IPs found 2

255.255.255.255
127.0.0.1