MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 7312bfd94e4efbaefd2bca8a80de2998262873a5e63548243b7d3a5b8d1372d6. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


Mirai


Vendor detections: 6


Intelligence 6 IOCs YARA File information Comments
Download sample Add tag Delete this sample Report a False Positive

SHA256 hash: 7312bfd94e4efbaefd2bca8a80de2998262873a5e63548243b7d3a5b8d1372d6
SHA3-384 hash: 07c852eaf58cc1c62a79d11fa25f5e66e610244c84ec09116df5d7a8deedc732fd9163a205820ff3cc8a3a72f9406f38
SHA1 hash: ba58723a591922a8c52f27934cf59dad9dbbb024
MD5 hash: 70ff0d86d11dfeb2da6c594aa43004bf
humanhash: gee-lima-island-butter
File name:g
Download: download sample
Signature Mirai
Create hunting rule
File size:1'023 bytes
First seen:2025-08-15 06:52:51 UTC
Last seen:Never
File type: sh
MIME type:text/plain
ssdeep 24:STqgKTatmXugSWX9wkiSZ7Uh+ADME3tRnF2v:S/KT+8JS699iugRMQdU
TLSH T16411D69813232C2FA716BD2A7676EFC87253CBA058A81768D4C76634C6CCF197031F59
Magika txt
Reporter abuse_ch
Tags:sh
URLMalware sample (SHA256 hash)SignatureTags
http://207.167.64.12/bins/flow.x860208a5de2be5d261010cc8d475702926b6441c0704cfef91c9d6fff0e9f831e6 Miraicensys elf mirai ua-wget
http://207.167.64.12/bins/flow.spcdceb73de437137e751a85f1fc6f6549071e886d60e1eeaa0c60fc44d37a632ff Miraicensys elf mirai ua-wget
http://207.167.64.12/bins/flow.sh4407585d915dfd478d210997600903649c80eafdb0ff89e6427c3232eb985eaba Miraicensys elf mirai ua-wget
http://207.167.64.12/bins/flow.ppc2f4baaa5ed764952485b2d4e510470a0982bbe2b4673c095ad3daea2eb8f631d Miraicensys elf mirai ua-wget
http://207.167.64.12/bins/flow.mpsl0527fbf5694db013c808451fd46d95e8db18f892d205323a2ef77a7fa9664a2f Miraicensys elf mirai ua-wget
http://207.167.64.12/bins/flow.mipsabd7cb42168dcd234a920c326f8988f9a9058c5cff548509f8be4d29b669ba76 Miraicensys elf mirai ua-wget
http://207.167.64.12/bins/flow.m68kffa75d143387e91c79ff318dc116391d35698ace5b41bdbf5de810cbb99ab923 Miraicensys elf mirai ua-wget
http://207.167.64.12/bins/flow.arm726e3c095af347e794e9faa0ad67c4aeddae75b2d9109b3e70435b4e91d131875 Miraicensys elf mirai ua-wget
http://207.167.64.12/bins/flow.arm67457bc7f31345875644d55a9284816fd6e4c5e0ea5368b7fbba61da9dc46bc51 Miraicensys elf mirai ua-wget
http://207.167.64.12/bins/flow.arm55e4030d0afcda52db7f8f9523a1dcef9fc340900e3a009571ed6e2a121797e8d Miraicensys elf mirai ua-wget
http://207.167.64.12/bins/flow.armf6be0134987bbfb7c727939b5312383f863d9af11739acb3d3cb594bb733c48a Miraicensys elf mirai ua-wget

Intelligence

File Origin
# of uploads :
1
# of downloads :
29
Origin country :
DE DE
Vendor Threat Intelligence
Detection(s):
SecuriteInfo.com.Linux.Downloader-35.UNOFFICIAL
Create hunting rule

Verdict:
Malicious
Labled as:
TrojanDownloader/Linux.Agent
Link:
https://www.hybrid-analysis.com/sample/7312bfd94e4efbaefd2bca8a80de2998262873a5e63548243b7d3a5b8d1372d6
Score:
100%
Verdict:
Malware
File Type:
SCRIPT
Link:
https://malprob.io/report/7312bfd94e4efbaefd2bca8a80de2998262873a5e63548243b7d3a5b8d1372d6
Detection:
n/a
Link:
https://mwdb.cert.pl/sample/7312bfd94e4efbaefd2bca8a80de2998262873a5e63548243b7d3a5b8d1372d6/
Verdict:
Malicious
Threat:
HEUR:Trojan-Downloader.Shell.Agent
Link:
https://tip.neiki.dev/file/7312bfd94e4efbaefd2bca8a80de2998262873a5e63548243b7d3a5b8d1372d6
Threat name:
Linux.Downloader.Generic
Create hunting rule
Status:
Suspicious
First seen:
2025-08-15 07:21:13 UTC
File Type:
Text (Shell)
AV detection:
14 of 24 (58.33%)
Threat level:
  3/5
Detection(s):
Suspicious file
Link:
https://check.spamhaus.org/check/?searchterm=omjl7wkoj35257jlzkfibxrjtatcq45f4y2uqjb3pu5fxditolla._file
Please note that we are no longer able to provide a coverage score for Virus Total.
Threat name:
Legit
Score:
0.00
Link:
https://yomi.yoroi.company/submissions/7312bfd94e4efbaefd2bca8a80de2998262873a5e63548243b7d3a5b8d1372d6

File information

The table below shows additional information about this malware sample such as delivery method and external references.

Web download

Mirai

sh 7312bfd94e4efbaefd2bca8a80de2998262873a5e63548243b7d3a5b8d1372d6

(this sample)

Mirai

elf 0208a5de2be5d261010cc8d475702926b6441c0704cfef91c9d6fff0e9f831e6

  
URLhaus
https://urlhaus.abuse.ch/url/3603940/
  
Delivery method
Distributed via web download
  
Dropping
MD5 1439c9a81930c4c8185f04292abbe0d7
  
Dropping
SHA256 0208a5de2be5d261010cc8d475702926b6441c0704cfef91c9d6fff0e9f831e6

Comments