MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 07b5ce4165b5a92914a6a903cac400e53d3909ec73ce171b7f6e5fb34ea1e5cb. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


Threat unknown


Vendor detections: 8


Intelligence 8 IOCs YARA File information Comments
Download sample Add tag Delete this sample Report a False Positive

SHA256 hash: 07b5ce4165b5a92914a6a903cac400e53d3909ec73ce171b7f6e5fb34ea1e5cb
SHA3-384 hash: 4f0fac3c9e8792c6c2094ba43974bf44aa73b544f70dcfe4f8d84390792688733bd892854c652c70e168d31872c07dba
SHA1 hash: f70afa06233a6c59c00a13aef3458bfe8b99c8dd
MD5 hash: fb6f7e9ab4e7e62930adc962e61a5297
humanhash: july-whiskey-friend-eighteen
File name:weed
Download: download sample
File size:4'621 bytes
First seen:2024-12-13 00:41:09 UTC
Last seen:Never
File type: sh
MIME type:text/plain
ssdeep 96:1xxwELCgcsdXV514QzKEgshXat1XfHkTFv:ZXXV514QzKfshXavXfHkTFv
TLSH T1169116CC3F517F324C91DF58F362866169B2D88544A34F1974EDB0BEA8BED44B212947
Magika shell
Reporter abuse_ch
Tags:sh

Intelligence

File Origin
# of uploads :
1
# of downloads :
112
Origin country :
DE DE
Vendor Threat Intelligence
Detection(s):
Sanesecurity.Malware.30790.LX.BOT.UNOFFICIAL
Create hunting rule

SecuriteInfo.com.Linux.Downloader-29.UNOFFICIAL
Create hunting rule

SecuriteInfo.com.Linux.Downloader-6.UNOFFICIAL
Create hunting rule

Verdict:
Clean
Score:
89.3%
Link:
https://cyber-fortress.com/docs/result/index.php?id=675bdbe289dbe216234f6187linux22vpnfull_triage
Tags:
malware
Verdict:
Likely Malicious
Threat level:
  7.5/10
Confidence:
100%
Tags:
anti-debug busybox expand lolbin remote
Link:
https://www.filescan.io/uploads/675b82da63e8381108d33092/reports/605f468a-885b-4f71-a540-010077256e2b/overview
Verdict:
Malicious
Labled as:
Linux.Medusa.C.Generic
Link:
https://www.hybrid-analysis.com/sample/07b5ce4165b5a92914a6a903cac400e53d3909ec73ce171b7f6e5fb34ea1e5cb
Result
Verdict:
MALICIOUS
Score:
50%
Verdict:
Susipicious
File Type:
SCRIPT
Link:
https://malprob.io/report/07b5ce4165b5a92914a6a903cac400e53d3909ec73ce171b7f6e5fb34ea1e5cb
Detection:
n/a
Link:
https://mwdb.cert.pl/sample/07b5ce4165b5a92914a6a903cac400e53d3909ec73ce171b7f6e5fb34ea1e5cb/
Threat name:
Win32.Trojan.Generic
Create hunting rule
Status:
Malicious
First seen:
2024-12-13 01:01:23 UTC
File Type:
Text (Shell)
AV detection:
12 of 24 (50.00%)
Threat level:
  5/5
Detection(s):
Suspicious file
Link:
https://check.spamhaus.org/check/?searchterm=a6244qlfwwussffgveb4vraa4u6tscpmophbog37nzp3gtvb4xfq._file
Please note that we are no longer able to provide a coverage score for Virus Total.
Threat name:
Malicious File
Score:
1.00
Link:
https://yomi.yoroi.company/submissions/07b5ce4165b5a92914a6a903cac400e53d3909ec73ce171b7f6e5fb34ea1e5cb

File information

The table below shows additional information about this malware sample such as delivery method and external references.

Web download

sh 07b5ce4165b5a92914a6a903cac400e53d3909ec73ce171b7f6e5fb34ea1e5cb

(this sample)

  
URLhaus
https://urlhaus.abuse.ch/url/3346946/
  
Delivery method
Distributed via web download
  
URLhaus
https://urlhaus.abuse.ch/url/3346955/
  
URLhaus
https://urlhaus.abuse.ch/url/3346956/
  
URLhaus
https://urlhaus.abuse.ch/url/3346957/
  
URLhaus
https://urlhaus.abuse.ch/url/3346958/
  
URLhaus
https://urlhaus.abuse.ch/url/3346959/
  
URLhaus
https://urlhaus.abuse.ch/url/3346961/
  
URLhaus
https://urlhaus.abuse.ch/url/3346960/
  
URLhaus
https://urlhaus.abuse.ch/url/3346963/
  
URLhaus
https://urlhaus.abuse.ch/url/3346962/
  
URLhaus
https://urlhaus.abuse.ch/url/3346964/
  
URLhaus
https://urlhaus.abuse.ch/url/3346965/
  
URLhaus
https://urlhaus.abuse.ch/url/3346966/
  
URLhaus
https://urlhaus.abuse.ch/url/3346967/
  
URLhaus
https://urlhaus.abuse.ch/url/3346968/
  
URLhaus
https://urlhaus.abuse.ch/url/3346969/
  
URLhaus
https://urlhaus.abuse.ch/url/3346972/
  
URLhaus
https://urlhaus.abuse.ch/url/3346970/
  
URLhaus
https://urlhaus.abuse.ch/url/3346971/
  
URLhaus
https://urlhaus.abuse.ch/url/3346973/
  
URLhaus
https://urlhaus.abuse.ch/url/3346974/
  
URLhaus
https://urlhaus.abuse.ch/url/3346975/
  
URLhaus
https://urlhaus.abuse.ch/url/3346976/
  
URLhaus
https://urlhaus.abuse.ch/url/3346977/
  
URLhaus
https://urlhaus.abuse.ch/url/3346981/
  
URLhaus
https://urlhaus.abuse.ch/url/3346979/
  
URLhaus
https://urlhaus.abuse.ch/url/3346978/
  
URLhaus
https://urlhaus.abuse.ch/url/3346980/
  
URLhaus
https://urlhaus.abuse.ch/url/3346983/
  
URLhaus
https://urlhaus.abuse.ch/url/3346986/
  
URLhaus
https://urlhaus.abuse.ch/url/3346985/
  
URLhaus
https://urlhaus.abuse.ch/url/3346987/
  
URLhaus
https://urlhaus.abuse.ch/url/3346984/
  
URLhaus
https://urlhaus.abuse.ch/url/3346988/
  
URLhaus
https://urlhaus.abuse.ch/url/3346998/

Comments