logs.tar

First submission 2024-09-30 14:08:03

File details

File type: POSIX tar archive (GNU)
Mime type: application/x-tar
File size: 6886.5 KB (7051776 bytes)
MD5: 9deef34939f4ce719e41aa3fe5f7b826
SHA1: 8f279913847159d590a1ed58f4deca2817c7a6af
SHA256: d6dd0cae7f3a853120984fd3c36db167a008825bd43876320df3d6044d93b1ca

File features detected

Is DLL
Packers
Anti Debug
Anti VM
Signed
XOR

OSINT Enrichments

Virus Total: 40/77 VT report date: 2024-09-30 13:29:49
Malware Type 3 miner pua trojan
Threat Type 3 r002c0pgk24 xmrig zoogn

URLs, FQDN and IP indicators 1

URL Host (FQDN/IP) Date Added
hXXp://141.98.10.12/downloads/logs.tar VirusTotal Report 141.98.10.12 VirusTotal Report 2024-09-30 14:08:03

Strings analysis - File found

Executable
lib%s.so
XML
topology.xml

Strings analysis - Possible IPs found 5

162.19.241.67
51.222.12.70
51.79.157.201
141.94.115.174
127.0.0.1

Strings analysis - Possible URLs found 6

https://xmrig.com/wizard
https://xmrig.com/docs/algorithms
http://
https://xmrig.com/benchmark/%s
https://
https://gcc.gnu.org/bugs/):