sys-l
First submission 2024-08-30 17:05:02
File details
File type: | Bourne-Again shell script, ASCII text executable, with very long lines |
Mime type: | text/x-shellscript |
File size: | 2.95 KB (3023 bytes) |
MD5: | 7d2cd4bc00e619319b1f67dd67a7e5b0 |
SHA1: | 63a3c7f9da273053f14f85c9a537efce511f9c46 |
SHA256: | 87329f43b0b17f975d8bd4e86231c622402cc2c75e7f5d415f392b234efa58eb |
File features detected
Is DLL
Packers
Anti Debug
Anti VM
Signed
XOR
OSINT Enrichments
Virus Total: | 5/79 VT report date: 2024-08-29 01:47:26 |
Malware Type 2 | downloader trojan |
Threat Type 1 | shell |
URLs, FQDN and IP indicators 1
Strings analysis - Possible IPs found 3
185.174.136.204 |
127.0.0.1 |
89.185.85.102 |
Strings analysis - Possible URLs found 2
http://185.174.136.204 |
http://89.185.85.102/c |