MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 797afb16624bf2808c9774d0c4297e11f654533795dbe7ae229decce54ef222d. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


Threat unknown


Vendor detections: 6


Intelligence 6 IOCs YARA File information Comments
Download sample Add tag Delete this sample Report a False Positive

SHA256 hash: 797afb16624bf2808c9774d0c4297e11f654533795dbe7ae229decce54ef222d
SHA3-384 hash: b69f6a05080a02824b4c508b4cec76504351c49b896720f92d90d6b9d2585671029f52a3d95453bd20a1339a1e55364a
SHA1 hash: 557a1615cda680aa9f59a6a0281a2ceea525e8f2
MD5 hash: 66b0c9c1601aa8bd5f639ce89a9aeb4b
humanhash: quebec-eleven-september-cold
File name:tp
Download: download sample
File size:940 bytes
First seen:2024-10-17 18:31:51 UTC
Last seen:Never
File type: sh
MIME type:text/x-shellscript
ssdeep 12:2WXOTtvmZobK/WXOpqXYcGFyZow4+fTpMivNdYt6VghdaWFKNaCc6akbuc4YHdco:2Qwpu/Q53GFyZoufVctfCJ9Cl9m
TLSH T11E11BD9180953D29A0B9CCEC71624C09EE0C86BE5E5A5A4C3F9E58761FBA824B058ACC
Magika shell
Reporter abuse_ch
Tags:sh

Intelligence

File Origin
# of uploads :
1
# of downloads :
67
Origin country :
DE DE
Vendor Threat Intelligence
Detection(s):
Sanesecurity.Malware.30786.LX.BOT.UNOFFICIAL
Create hunting rule

Verdict:
Malicious
Score:
93.3%
Link:
https://cyber-fortress.com/docs/result/index.php?id=67122d3a34f884d15c8ca52b
Tags:
Mirai Shell
Verdict:
Unknown
Threat level:
  10/10
Confidence:
100%
Link:
https://www.filescan.io/uploads/67115832b8693873ac834fba/reports/36445448-7e13-4895-9c65-95db3c940522/overview
Verdict:
Malicious
Labled as:
Trojan[Downloader]/Shell.Agent
Link:
https://www.hybrid-analysis.com/sample/797afb16624bf2808c9774d0c4297e11f654533795dbe7ae229decce54ef222d
Result
Verdict:
UNKNOWN
Score:
0%
Verdict:
Benign
File Type:
SCRIPT
Link:
https://malprob.io/report/797afb16624bf2808c9774d0c4297e11f654533795dbe7ae229decce54ef222d
Detection:
n/a
Link:
https://mwdb.cert.pl/sample/797afb16624bf2808c9774d0c4297e11f654533795dbe7ae229decce54ef222d/
Threat name:
Linux.Trojan.Multiverze
Create hunting rule
Status:
Malicious
First seen:
2024-10-17 19:05:26 UTC
AV detection:
10 of 24 (41.67%)
Threat level:
  5/5
Detection(s):
Suspicious file
Link:
https://check.spamhaus.org/check/?searchterm=pf5pwftcjpzibdexotimikl6ch3fiuzxsxn6plrctxwm4vhpeiwq._file
Please note that we are no longer able to provide a coverage score for Virus Total.
Threat name:
Malicious File
Score:
1.00
Link:
https://yomi.yoroi.company/submissions/797afb16624bf2808c9774d0c4297e11f654533795dbe7ae229decce54ef222d

File information

The table below shows additional information about this malware sample such as delivery method and external references.

Web download

sh 797afb16624bf2808c9774d0c4297e11f654533795dbe7ae229decce54ef222d

(this sample)

  
URLhaus
https://urlhaus.abuse.ch/url/3239777/
  
Delivery method
Distributed via web download

Comments