DigitalSide Threat Intel

reap.arm5

First submission 2022-07-13 13:54:02

File details

File type: ELF 32-bit LSB executable, ARM, version 1 (ARM), statically linked, stripped
File type: 81.35 KB (83300 bytes)
MD5: aa1dc381988672ca2f312964600e2f92
SHA1: e807239567ddf8a81d878c69b42a1db395ea5d7b
SHA256: 48e74d4b8c0ceaf5942d070efb1e7533c03b66262d0fa423fbe18fedff16acac
Virus Total: 38/62 VT report date: 2022-07-28 17:09:21

File features detected

Is DLL

Packers

Anti Debug

Anti VM

Signed

XOR

URLs, FQDN and IP indicators 2

URL Host (FQDN/IP) Date Added
hXXp://91.218.67.126/reaper/reap.arm5 VirusTotal Report 91.218.67.126 VirusTotal Report 2022-07-13 13:54:02
hXXp://91.218.67.126/bins/reap.arm5 VirusTotal Report 91.218.67.126 VirusTotal Report 2022-08-01 11:44:05

Strings analysis - Possible IPs found 2

91.218.67.126
127.0.0.1

Strings analysis - Possible URLs found 2

http://schemas.xmlsoap.org/soap/encoding/
http://schemas.xmlsoap.org/soap/envelope/