MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 b85771ddec4ae8fc34ce7c4410fe030d162b929bce9f3f5cd2222de756fe20e0. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


Mirai


Vendor detections: 6


Intelligence 6 IOCs YARA File information Comments
Download sample Add tag Delete this sample Report a False Positive

SHA256 hash: b85771ddec4ae8fc34ce7c4410fe030d162b929bce9f3f5cd2222de756fe20e0
SHA3-384 hash: d96c7b5f53595307e5c7c0d4b08e27d867084cf8664fa82bb0c9816d4b387f8b1f49cc320b0ea08e217c99c948635f0c
SHA1 hash: 30ad8a2806fbb8c1c57b0b513335072b40d17135
MD5 hash: d2736c22f0c940769229a33d3053d9b6
humanhash: washington-carpet-apart-gee
File name:geo
Download: download sample
Signature Mirai
Create hunting rule
File size:557 bytes
First seen:2025-02-16 04:36:56 UTC
Last seen:Never
File type: sh
MIME type:text/plain
ssdeep 6:zoBZJEtSLeIQkIaSLeIFLeIqNDLeI6a0LKitLeIFCCLeIyNIl5/LeIoanIGLeIsu:aJEtDjmNj0LKJNIl5G1JnKJEu
TLSH T117F0499E76331B8B5C008F07B4F205A95026E2C47069DB1EF989647E45BC502322CEDB
Magika shell
Reporter abuse_ch
Tags:sh
URLMalware sample (SHA256 hash)SignatureTags
http://45.125.66.102/mips87827abf0cab941223033b7711e75352acffef4fee524d63ed231114053e240a Miraiddos elf mirai
http://45.125.66.102/arma1f3c4581848f94ab1635899270b183804bb13e60b68a0b9564b9fc683366823 Miraimirai
http://45.125.66.102/arm5dfa96e7ca7f15de0b1c44bc8c50f0727cb02d0dd4a885f02fc0e0fdb788109f7 Miraiddos elf mirai
http://45.125.66.102/arm78d8f8856a9c932edd3d98a67bb635c378e28c616a9a4a86c51d846d223c1567c Miraimirai
http://45.125.66.102/arm4a1f3c4581848f94ab1635899270b183804bb13e60b68a0b9564b9fc683366823 Miraiddos elf mirai
http://45.125.66.102/arm6e777cf0c6e079136c89efa724dbc91b28e2da1e4f00ecd193766b0fa71e65784 Miraiddos elf mirai
http://45.125.66.102/x86726059279935725142e1f4d1241cf689b78ae796a951737e6513b548b9ed94aa Miraiddos elf mirai
http://45.125.66.102/mpslc3ea521d94d9781a2a5cd863065d7725831d2ccc3099e6a4c3520a5a77c84eff Miraiddos elf mirai

Intelligence

File Origin
# of uploads :
1
# of downloads :
76
Origin country :
DE DE
Vendor Threat Intelligence
Verdict:
Malicious
Score:
95.7%
Link:
https://cyber-fortress.com/docs/result/index.php?id=67b1ef7c28ab76d43a5b3aa1linux22vpnfull_triage
Tags:
phishing mirai
Verdict:
Malicious
Labled as:
Downloader/Shell.Generic
Link:
https://www.hybrid-analysis.com/sample/b85771ddec4ae8fc34ce7c4410fe030d162b929bce9f3f5cd2222de756fe20e0
Result
Verdict:
UNKNOWN
Score:
0%
Verdict:
Benign
File Type:
SCRIPT
Link:
https://malprob.io/report/b85771ddec4ae8fc34ce7c4410fe030d162b929bce9f3f5cd2222de756fe20e0
Detection:
n/a
Link:
https://mwdb.cert.pl/sample/b85771ddec4ae8fc34ce7c4410fe030d162b929bce9f3f5cd2222de756fe20e0/
Threat name:
Win32.Trojan.Generic
Create hunting rule
Status:
Malicious
First seen:
2025-02-16 13:54:16 UTC
File Type:
Text (Shell)
AV detection:
10 of 37 (27.03%)
Threat level:
  5/5
Detection(s):
Suspicious file
Link:
https://check.spamhaus.org/check/?searchterm=xblxdxpmjlupyngoprcbb7qdbulcxeu3z2pt6xgseiw6ovx6edqa._file
Please note that we are no longer able to provide a coverage score for Virus Total.
Threat name:
Malicious File
Score:
1.00
Link:
https://yomi.yoroi.company/submissions/b85771ddec4ae8fc34ce7c4410fe030d162b929bce9f3f5cd2222de756fe20e0

File information

The table below shows additional information about this malware sample such as delivery method and external references.

Web download

Mirai

sh b85771ddec4ae8fc34ce7c4410fe030d162b929bce9f3f5cd2222de756fe20e0

(this sample)

Mirai

elf 87827abf0cab941223033b7711e75352acffef4fee524d63ed231114053e240a

  
URLhaus
https://urlhaus.abuse.ch/url/3440385/
  
Delivery method
Distributed via web download
  
Dropping
MD5 2eee083538391b6a0140be9fd94531e8
  
Dropping
SHA256 87827abf0cab941223033b7711e75352acffef4fee524d63ed231114053e240a

Comments