DigitalSide Threat Intel

rainbow.jpg

First submission 2024-10-12 02:12:03

File details

File type: Bourne-Again shell script, ASCII text executable
Mime type: text/x-shellscript
File size: 0.52 KB (537 bytes)
MD5: f61bb19b54061a033d65c003c16e093f
SHA1: 83723edfb1d5de49ffb39bd7baebaade9347b796
SHA256: ff52fa64c50143a4e2371e71c6ad77104734fa53d3cd4e0b1d600c83c371f3a2

File features detected

Is DLL
Packers
Anti Debug
Anti VM
Signed
XOR

OSINT Enrichments

Virus Total: 1/77 VT report date: 2024-10-12 01:41:28

URLs, FQDN and IP indicators 1

URL Host (FQDN/IP) Date Added
hXXp://odoo.kseibitools.com/drhbntdenedrhn/rainbow.jpg VirusTotal Report odoo.kseibitools.com VirusTotal Report 2024-10-12 02:12:03

Strings analysis - Possible URLs found 1

https://cryptor.biz/crypt/ct872/api/6c32NmxVIhq5PMiRqFtg3YtQapLydYti