sys-l

First submission 2024-08-30 17:05:02

File details

File type: Bourne-Again shell script, ASCII text executable, with very long lines
Mime type: text/x-shellscript
File size: 2.95 KB (3023 bytes)
MD5: 7d2cd4bc00e619319b1f67dd67a7e5b0
SHA1: 63a3c7f9da273053f14f85c9a537efce511f9c46
SHA256: 87329f43b0b17f975d8bd4e86231c622402cc2c75e7f5d415f392b234efa58eb

File features detected

Is DLL
Packers
Anti Debug
Anti VM
Signed
XOR

OSINT Enrichments

Virus Total: 5/79 VT report date: 2024-08-29 01:47:26
Malware Type 2 downloader trojan
Threat Type 1 shell

URLs, FQDN and IP indicators 1

URL Host (FQDN/IP) Date Added
hXXp://185.174.136.204/sys-l VirusTotal Report 185.174.136.204 VirusTotal Report 2024-08-30 17:05:03

Strings analysis - Possible IPs found 3

185.174.136.204
127.0.0.1
89.185.85.102

Strings analysis - Possible URLs found 2

http://185.174.136.204
http://89.185.85.102/c