FsouhAFy48X3OFl9BVWkVgo7GMlPt05GET
First submission 2024-08-25 23:57:01
Last sumbission 2024-10-17 03:37:03
File details
| File type: | ELF 64-bit LSB executable, x86-64, version 1 (SYSV), statically linked, not stripped |
| Mime type: | application/x-executable |
| File size: | 95.2 KB (97480 bytes) |
| MD5: | c20c610e14b8e59f5f8258a55fe7f27d |
| SHA1: | e59a0b83d9882f2770f052a213cad25b0cbd53fc |
| SHA256: | adb7828df990cedc9f301891e725c547656967d827ce9cfdf3f6e8fa8242618b |
File features detected
Is DLL
Packers
Anti Debug
Anti VM
Signed
XOR
OSINT Enrichments
| Virus Total: | 20/79 VT report date: 2024-08-25 23:55:03 |
| Malware Type 1 | trojan |
| Threat Type 3 | mirai gafgyt possible |
URLs, FQDN and IP indicators 4
| URL | Host (FQDN/IP) | Date Added |
|---|---|---|
hXXp://conn.masjesu.zip/bins/FsouhAFy48X3OFl9BVWkVgo7GMlPt05GET  |
conn.masjesu.zip |
2024-10-17 03:37:07 |
| hXXp://87.120.126.196/bins/9j2wv67rQ1cC4cluaQNEjYtXDY6I0LJ9uk |
87.120.126.196 |
2024-10-15 14:53:03 |
| hXXp://87.120.84.230/bins/9j2wv67rQ1cC4cluaQNEjYtXDY6I0LJ9uk |
87.120.84.230 |
2024-10-15 14:51:05 |
| hXXp://87.120.84.230/bins/xCV9OjnmLxEPSjAlOV4hXbvRRpuw76WRKb |
87.120.84.230 |
2024-10-12 17:07:04 |
Strings analysis - Possible IPs found 1
| 8.8.8.8 |