MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 073b3cda4f9e45892f6d94f1bd8c1c5c3295abbeb557e5c2e1c516f64c8f7438. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


Threat unknown


Vendor detections: 3


Intelligence 3 IOCs YARA File information Comments
Download sample Add tag Delete this sample Report a False Positive

SHA256 hash: 073b3cda4f9e45892f6d94f1bd8c1c5c3295abbeb557e5c2e1c516f64c8f7438
SHA3-384 hash: 355dce8843d84e98ca699e43933d51aca58dabdfe6a9da622cd8b2d79db17623c28b6ce5f5d83aa1206be65a6ca64d4c
SHA1 hash: a0a41aead4b5c0405b01d52c193269c62cee063c
MD5 hash: 02787ba58747de945b875d262b157334
humanhash: sink-green-lemon-football
File name:073b3cda4f9e45892f6d94f1bd8c1c5c3295abbeb557e5c2e1c516f64c8f7438.sh
Download: download sample
File size:11'184 bytes
First seen:2026-02-22 13:18:58 UTC
Last seen:Never
File type: sh
MIME type:text/plain
ssdeep 96:c5ujB6msht+O+v1fsn+h4+tIiKkC1ymysuKNpUj4waYvj4Q6fm6fC6fpAAb:c5u96L4hvZ5mN9oKNpivcJ
TLSH T1BF327B3B21F08B32D3D410D953661AA54F72A70B492614B5F4BFA339AF2DA0374E7B61
Magika xml
Reporter abuse_ch
Tags:sh
URLMalware sample (SHA256 hash)SignatureTags
http://154.216.17.169/mass.shn/an/an/a
http://hxipzknrsojnitzv.zip/bins/bins.sh652285d260515c08cfe146ebdd2f5a4977ec490a608c57007abcb5b6f4fd4975 Miraibotnetdomain mirai opendir sh

Intelligence

File Origin
# of uploads :
1
# of downloads :
4
Origin country :
DE DE
Vendor Threat Intelligence
No detections
Verdict:
Malicious
Threat level:
  10/10
Confidence:
100%
Tags:
busybox evasive
Link:
https://www.filescan.io/uploads/699b026197feb4afd651d8c0/reports/399422ba-07ae-436b-aa53-350c60a46bf5/overview
Result
Gathering data
Status:
terminated
Link:
https://sandbox.kunai.rocks/analysis/a722f64a-cdd4-4313-a07f-1d54835cc618
Behavior Graph:
Download SVG
%3 guuid=d7116759-1a00-0000-b345-0381ff0a0000 pid=2815 /usr/bin/sudo guuid=6e42065c-1a00-0000-b345-0381040b0000 pid=2820 /tmp/sample.bin guuid=d7116759-1a00-0000-b345-0381ff0a0000 pid=2815->guuid=6e42065c-1a00-0000-b345-0381040b0000 pid=2820 execve
Score:
0%
Verdict:
Benign
File Type:
SCRIPT
Link:
https://malprob.io/report/073b3cda4f9e45892f6d94f1bd8c1c5c3295abbeb557e5c2e1c516f64c8f7438
Detection:
n/a
Link:
https://mwdb.cert.pl/sample/073b3cda4f9e45892f6d94f1bd8c1c5c3295abbeb557e5c2e1c516f64c8f7438/
Gathering data
Detection(s):
Suspicious file
Link:
https://check.spamhaus.org/check/?searchterm=a45tzwsptzcysl3nsty33da4lqzjlk56wvl6lqxbyulpmtepoq4a._file
Result
Malware family:
n/a
Score:
  3/10
Tags:
n/a
Link:
https://tria.ge/reports/260222-qkyzdsdt2g/
Behaviour
Modifies registry class
Suspicious use of SetWindowsHookEx
Enumerates physical storage devices
Please note that we are no longer able to provide a coverage score for Virus Total.
Threat name:
Legit
Score:
0.00
Link:
https://yomi.yoroi.company/submissions/073b3cda4f9e45892f6d94f1bd8c1c5c3295abbeb557e5c2e1c516f64c8f7438

File information

The table below shows additional information about this malware sample such as delivery method and external references.

Web download

sh 073b3cda4f9e45892f6d94f1bd8c1c5c3295abbeb557e5c2e1c516f64c8f7438

(this sample)

Mirai

sh 652285d260515c08cfe146ebdd2f5a4977ec490a608c57007abcb5b6f4fd4975

  
URLhaus
https://urlhaus.abuse.ch/url/3783249/
  
Delivery method
Distributed via web download
  
Dropping
MD5 b8264a3c5d5897320cf7549c149e0052
  
Dropping
SHA256 652285d260515c08cfe146ebdd2f5a4977ec490a608c57007abcb5b6f4fd4975

Comments