DigitalSide Threat Intel

x.rar

First submission 2024-05-20 12:40:13 Last sumbission 2024-10-15 20:53:08

File details

File type: ELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, stripped
Mime type: application/x-pie-executable
File size: 6858.22 KB (7022816 bytes)
MD5: c2fb307aee872df475a7345d641d72da
SHA1: 430e3d3bb3a4ebf30b9345b8fc7a2a6cf69ba8a8
SHA256: 0ad68d5804804c25a6f6f3d87cc3a3886583f69b7115ba01ab7c6dd96a186404

File features detected

Is DLL
Packers
Anti Debug
Anti VM
Signed
XOR

OSINT Enrichments

Virus Total: 45/66 VT report date: 2024-05-15 09:04:37

URLs, FQDN and IP indicators 1

URL Host (FQDN/IP) Date Added
hXXp://119.192.128.163:28080/docs/x.rar VirusTotal Report 119.192.128.163 VirusTotal Report 2024-10-15 20:53:11

Strings analysis - File found

Executable
lib%s.so
XML
topology.xml

Strings analysis - Possible IPs found 1

127.0.0.1

Strings analysis - Possible URLs found 6

https://xmrig.com/wizard
https://xmrig.com/docs/algorithms
http://
https://xmrig.com/benchmark/%s
https://
https://gcc.gnu.org/bugs/):