jaws
First submission 2022-08-01 21:41:01
File details
| File type: | Bourne-Again shell script, ASCII text executable |
| File type: | 2.42 KB (2477 bytes) |
| MD5: | 9080229bfd26d57f338ce8c0ad8aa151 |
| SHA1: | c1d5db6c3015a46272252f411d3515faca4e7bc1 |
| SHA256: | 59933d82fa971c73f64030b0b2527443e7a7cbfc23182dab8ada3db275b0fa81 |
| Virus Total: | 30/60 VT report date: 2022-08-01 18:37:00 |
File features detected
Is DLL
Packers
Anti Debug
Anti VM
Signed
XOR
URLs, FQDN and IP indicators 1
| URL | Host (FQDN/IP) | Date Added |
|---|---|---|
hXXp://rischyo.cf/jaws  |
rischyo.cf |
2022-08-01 21:41:01 |
Strings analysis - Possible IPs found 1
| 5.199.143.110 |
Strings analysis - Possible URLs found 13
| http://5.199.143.110/Syn/Syn.arm5; |
| http://5.199.143.110/Syn/Syn.mips; |
| http://5.199.143.110/Syn/Syn.arm; |
| http://5.199.143.110/Syn/Syn.arm6; |
| http://5.199.143.110/Syn/Syn.spc; |
| http://5.199.143.110/Syn/Syn.sh4; |
| http://5.199.143.110/Syn/Syn.x86; |
| http://5.199.143.110/Syn/Syn.ppc; |
| http://5.199.143.110/Syn/Syn.mpsl; |
| http://5.199.143.110/Syn/Syn.i686; |
| http://5.199.143.110/Syn/Syn.arc; |
| http://5.199.143.110/Syn/Syn.arm7; |
| http://5.199.143.110/Syn/Syn.m68k; |