camp.sh4
First submission 2023-09-14 09:39:02
File details
| File type: | ELF 32-bit LSB executable, Renesas SH, version 1 (SYSV), statically linked, stripped |
| Mime type: | application/x-executable |
| File size: | 68.99 KB (70648 bytes) |
| MD5: | bb84c389f5fbd3cc7ce6f99d813dbf5d |
| SHA1: | 36147e8d59cef4e137e867a80479e09c3671300b |
| SHA256: | d31b79e358b9c9ded2ef99622504d45f8c3c25e9778e20ebe5568c3b0d9f8e79 |
| Virus Total: | 41/60 VT report date: 2023-09-14 07:15:19 |
File features detected
Is DLL
Packers
Anti Debug
Anti VM
Signed
XOR
URLs, FQDN and IP indicators 1
| URL | Host (FQDN/IP) | Date Added |
|---|---|---|
hXXp://80.76.51.198/bins/camp.sh4  |
80.76.51.198 |
2023-09-14 09:39:02 |
Strings analysis - Possible IPs found 2
| 192.168.0.14 |
| 80.76.51.198 |
Strings analysis - Possible URLs found 4
| http://schemas.xmlsoap.org/soap/encoding/ |
| http://80.76.51.198/zyxel.sh; |
| http://schemas.xmlsoap.org/soap/envelope/ |
| http://80.76.51.198/bins/x86 |