bot.sh4

First submission 2024-03-25 14:07:03 Last sumbission 2024-04-12 09:10:03

File details

File type: ELF 32-bit LSB executable, Renesas SH, version 1 (SYSV), statically linked, stripped
Mime type: application/x-executable
File size: 113.78 KB (116512 bytes)
MD5: cdba14dc7070bfe3f5fe953d81684f83
SHA1: 5dfeaeb9d4a88c8c06d03f13025c2c0fd00645f2
SHA256: e7af5f1d5d68f75ee03a37ee8016695e35edaae528cdba4ab7b9a90570a1e4be
Virus Total:

File features detected

Is DLL

Packers

Anti Debug

Anti VM

Signed

XOR

URLs, FQDN and IP indicators 2

URL Host (FQDN/IP) Date Added
hXXp://103.237.86.195/condi/bot.sh4 VirusTotal Report 103.237.86.195 VirusTotal Report 2024-04-12 09:10:04
hXXp://103.237.86.195/bot.sh4 VirusTotal Report 103.237.86.195 VirusTotal Report 2024-04-12 08:58:05

Strings analysis - Possible IPs found 2

255.255.255.255
127.0.0.1