bot.arm

First submission 2024-09-02 14:18:02 Last sumbission 2024-09-02 15:40:01

File details

File type: ELF 32-bit LSB executable, ARM, version 1 (ARM), statically linked, stripped
Mime type: application/x-executable
File size: 134.75 KB (137984 bytes)
MD5: 8ea990ad28b67029aef1f53a68514608
SHA1: 9bf0094b75892274ece7904d8ffe13dbe5953384
SHA256: d78a121ef0e06a0e435d04496a573d94522c565de4871b43dadbc6d32633dd79

File features detected

Is DLL
Packers
Anti Debug
Anti VM
Signed
XOR

OSINT Enrichments

Virus Total: 30/79 VT report date: 2024-09-02 14:14:39
Malware Type 1 trojan
Threat Type 3 mirai gafgyt bashlite

URLs, FQDN and IP indicators 3

URL Host (FQDN/IP) Date Added
hXXp://chrome.webredirect.org/bot.arm VirusTotal Report chrome.webredirect.org VirusTotal Report 2024-09-02 15:40:02
hXXp://captcha.webredirect.org/bot.arm VirusTotal Report captcha.webredirect.org VirusTotal Report 2024-09-02 15:39:03
hXXp://185.196.9.222/bot.arm VirusTotal Report 185.196.9.222 VirusTotal Report 2024-09-02 14:18:02

Strings analysis - Possible IPs found 2

255.255.255.255
127.0.0.1