MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 2753f5f7771d268ea371bd7f3a582295397b5df2877d4ab251358860ad153279. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry

SHA256 hash:	2753f5f7771d268ea371bd7f3a582295397b5df2877d4ab251358860ad153279
SHA3-384 hash:	5736420b96b4a35697337fc1965fb985daf1b1d924fba9e1e5faedebe5d4d5139d59900a48f2bc3f598781ec2e3a6b31
SHA1 hash:	7d0498cbda55c6b54b2014efceaa17fd322b631b
MD5 hash:	121a400fa65d095f9ab05a3ecfb6cb0e
humanhash:	purple-sierra-violet-magazine
File name:	c.sh
Download:	download sample
Signature	Mirai Alert Create hunting rule
File size:	852 bytes
First seen:	2025-12-24 08:01:49 UTC
Last seen:	Never
File type:	sh
MIME type:	text/plain
ssdeep	24:3J3n7fdURDiNIx9GRKe1JZiNckRo/EOX3oP3pfBGg9GttHA:xq34Rn0+kRo/FXYP5fhitg
TLSH	T12E01E38F115DF582774C8F58B19FD15C7ED0A9E27A760921FB64C8B284E420037A8BF5
Magika	batch
Reporter	abuse_ch
Tags:	sh

Intelligence

---

File Origin

# of uploads :

1

# of downloads :

27

Origin country :

DE

Vendor Threat Intelligence

ACCE Unknown

No detections

ClamAV Detected

Detection(s):

SecuriteInfo.com.Linux.Downloader-33.UNOFFICIAL

Alert

Create hunting rule

FileScan.IO Malicious

Verdict:

Malicious

Threat level:

  10/10

Confidence:

100%

Tags:

mirai

Link:

https://www.filescan.io/uploads/694b9e05e126b9ff438f94e6/reports/7fb94b28-5e54-45f5-b266-e32471582074/overview

InQuest

Result

Gathering data

Kaspersky OpenTIP Malicious

Verdict:

Malicious

File Type:

ps1

First seen:

2025-12-24T03:48:00Z UTC

Last seen:

2025-12-24T04:01:00Z UTC

Hits:

~10

Detections:

Backdoor.Linux.Mirai.c HEUR:Trojan-Downloader.Shell.Agent.a HEUR:Backdoor.Linux.Mirai.hv HEUR:Backdoor.Linux.Mirai.b

Link:

https://opentip.kaspersky.com/2753f5f7771d268ea371bd7f3a582295397b5df2877d4ab251358860ad153279/results?tab=lookup

Kunai Sandbox

Status:

terminated

Link:

https://sandbox.kunai.rocks/analysis/60058960-4399-43b6-826a-03335bf08855

Behavior Graph:

Download SVG

Nucleon Malprob Malware

Score:

100%

Verdict:

Malware

File Type:

SCRIPT

Link:

https://malprob.io/report/2753f5f7771d268ea371bd7f3a582295397b5df2877d4ab251358860ad153279

CERT.PL MWDB

Detection:

n/a

Link:

https://mwdb.cert.pl/sample/2753f5f7771d268ea371bd7f3a582295397b5df2877d4ab251358860ad153279/

Neiki Backdoor.Linux.Mirai

Verdict:

Malicious

Threat:

Backdoor.Linux.Mirai

Link:

https://tip.neiki.dev/file/2753f5f7771d268ea371bd7f3a582295397b5df2877d4ab251358860ad153279

ReversingLabs TitaniumCloud Document-HTML.Downloader.Heuristic

Threat name:

Document-HTML.Downloader.Heuristic

Alert

Create hunting rule

Status:

Malicious

First seen:

2025-12-24 08:02:15 UTC

File Type:

Text (Shell)

AV detection:

10 of 36 (27.78%)

Threat level:

  2/5

Spamhaus Hash Blocklist Suspicious file

Detection(s):

Suspicious file

Link:

https://check.spamhaus.org/check/?searchterm=e5j7l53xduti5i3rxv7tuwbcsu4xwxpsq56uvmsrgwegblivgj4q._file

Hatching Triage

Gathering data

VirusTotal

Please note that we are no longer able to provide a coverage score for Virus Total.

YOROI YOMI Legit

Threat name:

Legit

Score:

0.00

Link:

https://yomi.yoroi.company/submissions/2753f5f7771d268ea371bd7f3a582295397b5df2877d4ab251358860ad153279