quang.sh4

First submission 2024-02-10 03:26:02

File details

File type: ELF 32-bit LSB executable, Renesas SH, version 1 (SYSV), statically linked, stripped
Mime type: application/x-executable
File size: 41.0 KB (41980 bytes)
MD5: 7cfbdfa2587371424ecf7b72d9851043
SHA1: 914852d45d782ca6e10167f20bbff66af8917171
SHA256: 727513f767537997a626bab637a20c3be19388dd71d653ceaa79cda027044744
Virus Total:

File features detected

Is DLL

Packers

Anti Debug

Anti VM

Signed

XOR

URLs, FQDN and IP indicators 1

URL Host (FQDN/IP) Date Added
hXXp://botnet.shopkami.site/quang.sh4 VirusTotal Report botnet.shopkami.site VirusTotal Report 2024-02-10 03:26:02

Strings analysis - Possible IPs found 2

255.255.255.255
127.0.0.1