sora.sh

First submission 2024-09-28 08:04:03 Last sumbission 2024-09-28 11:12:02

File details

File type: Bourne-Again shell script, ASCII text executable
Mime type: text/x-shellscript
File size: 1.87 KB (1913 bytes)
MD5: db54c5484cc40cc2ba7794c088ec1d9d
SHA1: 6b760e6d5eaaae19d57f4fa2175c80e7ee82bcb6
SHA256: 8215c51e1cd9ac41a02886e25509e7ed0e1797fa7598ae0cdb7583dfcd300981

File features detected

Is DLL
Packers
Anti Debug
Anti VM
Signed
XOR

URLs, FQDN and IP indicators 2

URL Host (FQDN/IP) Date Added
hXXp://45.13.227.129/sora.sh VirusTotal Report 45.13.227.129 VirusTotal Report 2024-09-28 11:12:03
hXXp://45.13.227.129/bin VirusTotal Report 45.13.227.129 VirusTotal Report 2024-09-28 08:04:03

Strings analysis - Possible IPs found 1

45.13.227.129

Strings analysis - Possible URLs found 20

http://45.13.227.129/bins/sora.arm4;
http://45.13.227.129/bins/sora.m68k;cat
http://45.13.227.129/bins/sora.mips;cat
http://45.13.227.129/bins/sora.x86;cat
http://45.13.227.129/bins/sora.ppc;cat
http://45.13.227.129/bins/sora.arm6;
http://45.13.227.129/bins/sora.mpsl;cat
http://45.13.227.129/bins/sora.m68k;
http://45.13.227.129/bins/sora.arm7;
http://45.13.227.129/bins/sora.arm6;cat
http://45.13.227.129/bins/sora.arm5;cat
http://45.13.227.129/bins/sora.ppc;
http://45.13.227.129/bins/sora.arm7;cat
http://45.13.227.129/bins/sora.arm4;cat
http://45.13.227.129/bins/sora.sh4;
http://45.13.227.129/bins/sora.mpsl;
http://45.13.227.129/bins/sora.x86;
http://45.13.227.129/bins/sora.arm5;
http://45.13.227.129/bins/sora.sh4;cat
http://45.13.227.129/bins/sora.mips;