dx.sh
First submission 2024-09-05 00:27:01
File details
File type: | Bourne-Again shell script, ASCII text executable |
Mime type: | text/x-shellscript |
File size: | 2.38 KB (2432 bytes) |
MD5: | 8ff8595159183e7b7d8337ef3f6a161c |
SHA1: | f8df737ae80ec24eb316d8dda21278041199ef01 |
SHA256: | e66ecf5959a28aee2c66bfc8546dd64cbf8cc31fc6fc22a940f2dddc298d9811 |
File features detected
Is DLL
Packers
Anti Debug
Anti VM
Signed
XOR
OSINT Enrichments
Virus Total: | 36/79 VT report date: 2024-09-04 23:55:47 |
Malware Type 2 | downloader trojan |
Threat Type 3 | medusa shell bash |
URLs, FQDN and IP indicators 1
Strings analysis - Possible IPs found 1
154.216.17.167 |
Strings analysis - Possible URLs found 13
http://154.216.17.167/zmap.mips; |
http://154.216.17.167/zmap.ppc; |
http://154.216.17.167/zmap.arm5; |
http://154.216.17.167/zmap.i686; |
http://154.216.17.167/zmap.mpsl; |
http://154.216.17.167/zmap.m68k; |
http://154.216.17.167/zmap.arc; |
http://154.216.17.167/zmap.sh4; |
http://154.216.17.167/zmap.spc; |
http://154.216.17.167/zmap.arm6; |
http://154.216.17.167/zmap.arm; |
http://154.216.17.167/zmap.x86; |
http://154.216.17.167/zmap.arm7; |