phantom.sh4
First submission 2023-09-16 03:34:01
File details
| File type: | ELF 32-bit LSB executable, Renesas SH, version 1 (SYSV), statically linked, stripped |
| Mime type: | application/x-executable |
| File size: | 50.38 KB (51584 bytes) |
| MD5: | 6c9902d45b451800502ad2eace4c9393 |
| SHA1: | e44c8754bb5b69bbe49ca43f4959f02d79f2ce41 |
| SHA256: | 02796f0ad6c87f70e72944d5c8a42065a97da5caac898bcf0861f43f4d29e475 |
| Virus Total: | 39/61 VT report date: 2023-09-16 01:15:16 |
File features detected
Is DLL
Packers
Anti Debug
Anti VM
Signed
XOR
URLs, FQDN and IP indicators 1
| URL | Host (FQDN/IP) | Date Added |
|---|---|---|
hXXp://88.214.21.195/bins/phantom.sh4  |
88.214.21.195 |
2023-09-16 03:34:01 |
Strings analysis - Possible IPs found 1
| 88.214.21.195 |