MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 2dc58ba167769f1c4c3868026cef28f311a9bffe0f07e1fa597a945cc7e0c6cc. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


Threat unknown


Vendor detections: 8


Intelligence 8 IOCs YARA File information Comments
Download sample Add tag Delete this sample Report a False Positive

SHA256 hash: 2dc58ba167769f1c4c3868026cef28f311a9bffe0f07e1fa597a945cc7e0c6cc
SHA3-384 hash: cdabae56c190dd228913b622aa5d5a625a82b855e614af31851b23720b2907492f93c5ba8a67dc7adbb2330d1c72c4ad
SHA1 hash: 95908720ba0f3d690e3fc13be88e14041136c77e
MD5 hash: d71ecff3fc5458a55b0f6ec171da2d40
humanhash: friend-fish-vegan-single
File name:ssh
Download: download sample
File size:294 bytes
First seen:2025-04-25 12:22:55 UTC
Last seen:Never
File type: sh
MIME type:text/plain
ssdeep 6:/VJqaN4f/lsGVYzr3F5kJVKE6LsVKE6NiVVNDV2uVf6vC5:/VJnwtNng5sguThb
TLSH T1B9E0271FD402D1FF7145C885FEFDB4D4B64F2199074E060C56BE45175CD0C587044536
Magika shell
Reporter abuse_ch
Tags:sh

Intelligence

File Origin
# of uploads :
1
# of downloads :
67
Origin country :
DE DE
Vendor Threat Intelligence
Detection(s):
SecuriteInfo.com.Linux.DownLoader.2243.5355.4889.UNOFFICIAL
Create hunting rule

Verdict:
Malicious
Score:
97.4%
Link:
https://cyber-fortress.com/docs/result/index.php?id=680bafe5a37ff28e1299bf5elinux22vpnfull_triage
Tags:
trojan mirai agent virus
Verdict:
Likely Malicious
Threat level:
  7.5/10
Confidence:
100%
Link:
https://www.filescan.io/uploads/680b7eb3212716475faee4e7/reports/a4fe778e-98ce-45de-b4a7-75e3fbce6686/overview
Verdict:
Malicious
Labled as:
Bash.MiraiB.Generic
Link:
https://www.hybrid-analysis.com/sample/2dc58ba167769f1c4c3868026cef28f311a9bffe0f07e1fa597a945cc7e0c6cc
Score:
100%
Verdict:
Malware
File Type:
SCRIPT
Link:
https://malprob.io/report/2dc58ba167769f1c4c3868026cef28f311a9bffe0f07e1fa597a945cc7e0c6cc
Detection:
n/a
Link:
https://mwdb.cert.pl/sample/2dc58ba167769f1c4c3868026cef28f311a9bffe0f07e1fa597a945cc7e0c6cc/
Threat name:
Linux.Downloader.MiraiB
Create hunting rule
Status:
Malicious
First seen:
2025-04-25 15:18:05 UTC
File Type:
Text (Shell)
AV detection:
14 of 24 (58.33%)
Threat level:
  3/5
Detection(s):
Suspicious file
Link:
https://check.spamhaus.org/check/?searchterm=fxcyxilho2prytbynabgz3zi6mi2tp76b4d6d6szpkkfzr7ay3ga._file
Result
Malware family:
n/a
Score:
  3/10
Tags:
n/a
Link:
https://tria.ge/reports/250425-s52bcsymv2/
Behaviour
Modifies registry class
Suspicious use of SetWindowsHookEx
Enumerates physical storage devices
Please note that we are no longer able to provide a coverage score for Virus Total.
Threat name:
Malicious File
Score:
1.00
Link:
https://yomi.yoroi.company/submissions/2dc58ba167769f1c4c3868026cef28f311a9bffe0f07e1fa597a945cc7e0c6cc

File information

The table below shows additional information about this malware sample such as delivery method and external references.

Web download

sh 2dc58ba167769f1c4c3868026cef28f311a9bffe0f07e1fa597a945cc7e0c6cc

(this sample)

  
URLhaus
https://urlhaus.abuse.ch/url/3524615/
  
Delivery method
Distributed via web download

Comments