qlcxvisgod.mips

First submission 2022-07-30 13:24:02

File details

File type: ELF 32-bit MSB executable, MIPS, MIPS-I version 1 (SYSV), statically linked, stripped
File type: 91.28 KB (93472 bytes)
MD5: ab68c3e9eaf2dd0c6b1e2a9318ea7bbf
SHA1: 116220de89bf1cc1a7fed5041b82a6ecb28480c7
SHA256: 69e96fddc3f2ca5e77770fcbbcc4d7107c7bf8be0b98ffa8a871d90ee60023d7
Virus Total: 37/62 VT report date: 2022-07-29 12:10:58

File features detected

Is DLL

Packers

Anti Debug

Anti VM

Signed

XOR

URLs, FQDN and IP indicators 1

URL Host (FQDN/IP) Date Added
hXXp://208.67.106.145/bns//qlcxvisgod.mips VirusTotal Report 208.67.106.145 VirusTotal Report 2022-07-30 13:24:02

Strings analysis - Possible IPs found 2

208.67.106.145
192.168.0.14

Strings analysis - Possible URLs found 4

http://schemas.xmlsoap.org/soap/encoding/
http://208.67.106.145/zyxel.sh;
http://208.67.106.145/bns/x86
http://schemas.xmlsoap.org/soap/envelope/