S2z1RgTCMFhgFZrusuhrp37b3YZbvgx2oo
First submission 2024-10-12 17:10:02
Last sumbission 2024-10-17 03:36:02
File details
| File type: | ELF 32-bit LSB executable, Renesas SH, version 1 (SYSV), statically linked, not stripped |
| Mime type: | application/x-executable |
| File size: | 88.77 KB (90896 bytes) |
| MD5: | e9e5d79acad49bbe6c77df0385ec77aa |
| SHA1: | 53bbc8b58873cf3117743fab15bd5508421370eb |
| SHA256: | a585eff62bec554d3d7f23aaf9b298a15eb328e8968352339db915ef427f27bd |
File features detected
Is DLL
Packers
Anti Debug
Anti VM
Signed
XOR
OSINT Enrichments
| Virus Total: | 37/77 VT report date: 2024-08-27 19:30:04 |
| Malware Type 1 | trojan |
| Threat Type 3 | mirai gafgyt fzbwv |
URLs, FQDN and IP indicators 3
| URL | Host (FQDN/IP) | Date Added |
|---|---|---|
hXXp://conn.masjesu.zip/bins/S2z1RgTCMFhgFZrusuhrp37b3YZbvgx2oo  |
conn.masjesu.zip |
2024-10-17 03:36:06 |
| hXXp://87.120.126.196/bins/IGibxY4zOYwprLLhJNKrry2UiiJ2yAOrYX |
87.120.126.196 |
2024-10-15 14:55:06 |
| hXXp://87.120.84.230/bins/tMTYkOCw7ZJuBUdjbvdfRN6bTB66y31L5h |
87.120.84.230 |
2024-10-12 17:10:02 |
Strings analysis - Possible IPs found 2
| 8.8.8.8 |
| 192.168.1.1 |