MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 8322efa87690f303de9d2d0b6f752981fe0c4933fb8a0a62b55da81237186fa5. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


Threat unknown


Vendor detections: 4


Intelligence 4 IOCs YARA File information Comments
Download sample Add tag Delete this sample Report a False Positive

SHA256 hash: 8322efa87690f303de9d2d0b6f752981fe0c4933fb8a0a62b55da81237186fa5
SHA3-384 hash: 04049e66e50d5f5007884731f92010ecaf45dd9f6802c6dcaf3bd79055808c3f7761b01febdd4e9e2b1feee201a1bfe8
SHA1 hash: e9d1d78f9f97d30ab9ddeb0126c39198ad742b4a
MD5 hash: 31926052872177d47a94db3a78e3a8b1
humanhash: virginia-sweet-monkey-quiet
File name:a
Download: download sample
File size:1'021 bytes
First seen:2024-11-30 13:01:47 UTC
Last seen:2024-12-04 14:22:13 UTC
File type: sh
MIME type:text/x-shellscript
ssdeep 24:0/W4Y5QhyQh9QhxrWOfS71IxG5kkubfHoVD:0O8H8iJ7cG5kkubgVD
TLSH T1C411ABC5359217544DB780ED26973109370605A7320CBD18D2EE3B1B658BAA9F2ED2AE
Magika shell
Reporter abuse_ch
Tags:sh

Intelligence

File Origin
# of uploads :
2
# of downloads :
80
Origin country :
DE DE
Vendor Threat Intelligence
Verdict:
Clean
Score:
99.9%
Link:
https://cyber-fortress.com/docs/result/index.php?id=674b0e0504c232bff3b5197flinux22vpnfull_triage
Tags:
malware
Verdict:
Suspicious
Threat level:
  5/10
Confidence:
100%
Tags:
busybox
Link:
https://www.filescan.io/uploads/674b0cca3d8719873e6f027a/reports/75f57998-ac28-452c-b71f-232b99827e5e/overview
Score:
0%
Verdict:
Benign
File Type:
SCRIPT
Link:
https://malprob.io/report/8322efa87690f303de9d2d0b6f752981fe0c4933fb8a0a62b55da81237186fa5
Detection:
n/a
Link:
https://mwdb.cert.pl/sample/8322efa87690f303de9d2d0b6f752981fe0c4933fb8a0a62b55da81237186fa5/
Threat name:
Linux.Trojan.Vigorf
Create hunting rule
Status:
Malicious
First seen:
2024-11-30 13:02:03 UTC
File Type:
Text (Shell)
AV detection:
7 of 24 (29.17%)
Threat level:
  5/5
Detection(s):
Suspicious file
Link:
https://check.spamhaus.org/check/?searchterm=qmro7kdwsdzqhxu5fufw65jjqh7aysjt7ofauyvvlwubenyyn6sq._file
Result
Malware family:
n/a
Score:
  7/10
Tags:
defense_evasion discovery linux
Link:
https://tria.ge/reports/241130-p9rqyayncj/
Behaviour
Reads runtime system information
File and Directory Permissions Modification
Please note that we are no longer able to provide a coverage score for Virus Total.
Threat name:
Legit
Score:
0.00
Link:
https://yomi.yoroi.company/submissions/8322efa87690f303de9d2d0b6f752981fe0c4933fb8a0a62b55da81237186fa5

File information

The table below shows additional information about this malware sample such as delivery method and external references.

Web download

sh 8322efa87690f303de9d2d0b6f752981fe0c4933fb8a0a62b55da81237186fa5

(this sample)

  
URLhaus
https://urlhaus.abuse.ch/url/2824952/
  
Delivery method
Distributed via web download

Comments