DigitalSide Threat Intel

sora.i686

First submission 2024-10-17 02:51:02 Last sumbission 2024-10-17 02:54:02

File details

File type: ELF 32-bit LSB executable, Intel 80386, version 1 (GNU/Linux), statically linked, no section header
Mime type: application/x-executable
File size: 23.44 KB (24004 bytes)
MD5: 841f285ee2d01b9e836b3da1976afa34
SHA1: e4c34a34a25b55c681ace07987ab6e0970b2008c
SHA256: a15ad1e010ab009f7cdd16ff636589b5960197b7a8094ca1b0cbae651ef09be3

File features detected

Is DLL
Packers
Anti Debug
Anti VM
Signed
XOR

OSINT Enrichments

Virus Total: 28/77 VT report date: 2024-10-17 02:13:47
Malware Type 1 trojan
Threat Type 2 mirai gafgyt

URLs, FQDN and IP indicators 2

URL Host (FQDN/IP) Date Added
hXXp://93.123.85.141/bins/sora.i686 VirusTotal Report 93.123.85.141 VirusTotal Report 2024-10-17 02:54:04
hXXp://93.123.85.141/sora.i686 VirusTotal Report 93.123.85.141 VirusTotal Report 2024-10-17 02:51:02

Strings analysis - Possible URLs found 1

http://upx.sf.net