sora.sh4
First submission 2024-10-17 02:48:02
Last sumbission 2024-10-17 02:53:02
File details
| File type: | ELF 32-bit LSB executable, Renesas SH, version 1 (SYSV), statically linked, stripped |
| Mime type: | application/x-executable |
| File size: | 49.09 KB (50268 bytes) |
| MD5: | c2ea1a132d48e1f4c46b08833a0a1993 |
| SHA1: | fa2df005771115be73fad9a1b2c8861b592eeecc |
| SHA256: | 448b1b26da19f63f09c9c9705e7b047a17baddda03b66bba9fa75b62ae5ed513 |
File features detected
Is DLL
Packers
Anti Debug
Anti VM
Signed
XOR
OSINT Enrichments
| Virus Total: | 39/77 VT report date: 2024-10-17 02:16:02 |
| Malware Type 1 | trojan |
| Threat Type 3 | mirai bonb smmr1 |
URLs, FQDN and IP indicators 2
| URL | Host (FQDN/IP) | Date Added |
|---|---|---|
hXXp://93.123.85.141/bins/sora.sh4  |
93.123.85.141 |
2024-10-17 02:53:03 |
| hXXp://93.123.85.141/sora.sh4 |
93.123.85.141 |
2024-10-17 02:48:02 |
Strings analysis - Possible IPs found 1
| 93.123.85.141 |