qlcxvisgod.arm

First submission 2022-07-30 13:23:02

File details

File type: ELF 32-bit LSB executable, ARM, version 1 (ARM), statically linked, stripped
File type: 72.99 KB (74744 bytes)
MD5: c08aee50f77c107477034ecf5623e847
SHA1: 824037cfa6bd5e669c10d2fc0385cff06d312a2e
SHA256: bb1ab20b1fab4a812e467b95c80e6c0fab0e1ab0637795aa56f9de8d17155e2d
Virus Total: 35/62 VT report date: 2022-07-29 09:25:16

File features detected

Is DLL

Packers

Anti Debug

Anti VM

Signed

XOR

URLs, FQDN and IP indicators 1

URL Host (FQDN/IP) Date Added
hXXp://208.67.106.145/bns//qlcxvisgod.arm VirusTotal Report 208.67.106.145 VirusTotal Report 2022-07-30 13:23:02

Strings analysis - Possible IPs found 2

208.67.106.145
192.168.0.14

Strings analysis - Possible URLs found 4

http://208.67.106.145/zyxel.sh;
http://schemas.xmlsoap.org/soap/encoding/
http://208.67.106.145/bns/x86
http://schemas.xmlsoap.org/soap/envelope/