MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 6d27834ab0640ae21175daaaf484647d6475342ff17030849bb44c3079c49a17. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


Threat unknown


Vendor detections: 7


Intelligence 7 IOCs YARA File information Comments
Download sample Add tag Delete this sample Report a False Positive

SHA256 hash: 6d27834ab0640ae21175daaaf484647d6475342ff17030849bb44c3079c49a17
SHA3-384 hash: deb284955f34d40ca45227afd8cf80768cd1f2a369b43dc1bd5c73028a26620b774a3663c322566603e825b73563cd82
SHA1 hash: a5506e750446bb1ead492cd2c212db82c6d08d10
MD5 hash: f63157332c2ac870410fc8a0dbc475c8
humanhash: salami-louisiana-enemy-india
File name:cn
Download: download sample
File size:540 bytes
First seen:2024-11-22 15:51:50 UTC
Last seen:Never
File type: sh
MIME type:text/plain
ssdeep 6:LCertkbTNXbYCDCer7K12XyXICDCer6vmXZi/DCerIXZJDCer9NIF+KMXZBFIPDj:N4TNXhm2Xh9eXzX5NIbMXvp7XI
TLSH T1F9F09C8976337A47112CFE1F71B759DCB4A2C3CC0407A79DBD8504F98558D45B01C956
Magika txt
Reporter abuse_ch
Tags:sh

Intelligence

File Origin
# of uploads :
1
# of downloads :
61
Origin country :
DE DE
Vendor Threat Intelligence
Detection(s):
SecuriteInfo.com.Linux.Downloader-35.UNOFFICIAL
Create hunting rule

Verdict:
Malicious
Score:
97.4%
Link:
https://cyber-fortress.com/docs/result/index.php?id=6741c93fd0583382434ab027linux22vpnfull_triage
Tags:
mirai agent virus sage
Verdict:
Malicious
Threat level:
  10/10
Confidence:
100%
Link:
https://www.filescan.io/uploads/6740a8b0fbec06b76a1a55ea/reports/28765ff6-8720-4ccb-9851-85f91f28fe13/overview
Verdict:
Malicious
Labled as:
Downloader/Shell.Generic
Link:
https://www.hybrid-analysis.com/sample/6d27834ab0640ae21175daaaf484647d6475342ff17030849bb44c3079c49a17
Score:
0%
Verdict:
Benign
File Type:
SCRIPT
Link:
https://malprob.io/report/6d27834ab0640ae21175daaaf484647d6475342ff17030849bb44c3079c49a17
Detection:
n/a
Link:
https://mwdb.cert.pl/sample/6d27834ab0640ae21175daaaf484647d6475342ff17030849bb44c3079c49a17/
Threat name:
Linux.Trojan.Generic
Create hunting rule
Status:
Suspicious
First seen:
2024-11-22 16:08:56 UTC
File Type:
Text (Shell)
AV detection:
17 of 38 (44.74%)
Threat level:
  5/5
Detection(s):
Suspicious file
Link:
https://check.spamhaus.org/check/?searchterm=nutygsvqmqfoeelv3kvpjbdepvshknbp6fydbbe3wrgda6oetilq._file
Please note that we are no longer able to provide a coverage score for Virus Total.
Threat name:
Malicious File
Score:
1.00
Link:
https://yomi.yoroi.company/submissions/6d27834ab0640ae21175daaaf484647d6475342ff17030849bb44c3079c49a17

File information

The table below shows additional information about this malware sample such as delivery method and external references.

Web download

sh 6d27834ab0640ae21175daaaf484647d6475342ff17030849bb44c3079c49a17

(this sample)

  
URLhaus
https://urlhaus.abuse.ch/url/3299673/
  
Delivery method
Distributed via web download

Comments