LEXOGw9MCEKzPeuv5TNztfRyZxgg0TxVUC
First submission 2024-10-12 17:06:02
Last sumbission 2024-10-17 03:33:03
File details
| File type: | ELF 32-bit LSB executable, ARM, version 1 (ARM), statically linked, with debug_info, not stripped |
| Mime type: | application/x-executable |
| File size: | 108.14 KB (110738 bytes) |
| MD5: | c97a9c55ddb153e8bfce38f201d2cffb |
| SHA1: | 3970452f27327f98c2e3fdcabf0390067b48bd62 |
| SHA256: | 138a80e023ab0bbb8b2259cf3633c94c39e6f68df2be2ad01ef08590249e662c |
File features detected
Is DLL
Packers
Anti Debug
Anti VM
Signed
XOR
OSINT Enrichments
| Virus Total: | 39/77 VT report date: 2024-08-27 18:51:09 |
| Malware Type 1 | trojan |
| Threat Type 3 | mirai gafgyt lvyon |
URLs, FQDN and IP indicators 4
| URL | Host (FQDN/IP) | Date Added |
|---|---|---|
hXXp://conn.masjesu.zip/bins/LEXOGw9MCEKzPeuv5TNztfRyZxgg0TxVUC  |
conn.masjesu.zip |
2024-10-17 03:33:07 |
| hXXp://87.120.126.196/bins/f9aeCeTtw365to8SquTIrUgrCyysFr79aj |
87.120.126.196 |
2024-10-15 15:39:05 |
| hXXp://87.120.84.230/bins/f9aeCeTtw365to8SquTIrUgrCyysFr79aj |
87.120.84.230 |
2024-10-15 15:00:06 |
| hXXp://87.120.84.230/bins/o1UJSlRrjB0euYpEDTSNth7YMQoYsSDdKz |
87.120.84.230 |
2024-10-12 17:06:02 |
Strings analysis - Possible IPs found 2
| 8.8.8.8 |
| 192.168.1.1 |