MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 bb374b50a81b3daa734062a8f087cc85bb675de908dea0a8154e686a466e9ce0. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


Mirai


Vendor detections: 6


Intelligence 6 IOCs YARA File information Comments
Download sample Add tag Delete this sample Report a False Positive

SHA256 hash: bb374b50a81b3daa734062a8f087cc85bb675de908dea0a8154e686a466e9ce0
SHA3-384 hash: d33518d123d3f8c20624c82b7855a61265bca7bea48c312198e9b24c929f046e4a499ddfa75f64c19f3c4c6553520984
SHA1 hash: 30ad229f0f8c327c5f1a5c4a296499ee0f82256d
MD5 hash: 588c5df336267fb4f97a36ed8356b093
humanhash: princess-sink-queen-august
File name:massload
Download: download sample
Signature Mirai
Create hunting rule
File size:2'067 bytes
First seen:2025-04-17 09:44:21 UTC
Last seen:Never
File type: sh
MIME type:text/plain
ssdeep 24:GIbTmWIw8GxTTtHWvw3GxZz74sN1t8HGx5D3Zs2xuo3xj:jTmWIw/WvwmEMpJZR
TLSH T1C1411E9867B2EE1BFD03AF00B1518301F8C7EEF12687CA66D59814F3C09CD287453A2A
Magika shell
Reporter abuse_ch
Tags:sh
URLMalware sample (SHA256 hash)SignatureTags
http://95.215.108.183/skid.mipsn/an/addos elf mirai
http://95.215.108.183/skid.mipseln/an/addos elf mirai
http://95.215.108.183/skid.armv4ln/an/addos elf mirai
http://95.215.108.183/skid.armv5l9878b4183be068b638e04656a02c5679f02a5a982e472cc1c497cc654345f3b6 Miraiddos elf mirai
http://95.215.108.183/skid.armv7ln/an/addos elf mirai
http://95.215.108.183/ppc5b3466b4b2495b829c6cc3686a3773ebd1615438624b46c81acb3ac719f3d14e Miraielf ua-wget
http://95.215.108.183/sh45b3466b4b2495b829c6cc3686a3773ebd1615438624b46c81acb3ac719f3d14e Miraielf ua-wget

Intelligence

File Origin
# of uploads :
1
# of downloads :
61
Origin country :
DE DE
Vendor Threat Intelligence
Verdict:
Malicious
Score:
97.4%
Link:
https://cyber-fortress.com/docs/result/index.php?id=680114872203b3e10cd04c9flinux22vpnfull_triage
Tags:
downloader mirai agent virus
Verdict:
Likely Malicious
Threat level:
  7.5/10
Confidence:
100%
Link:
https://www.filescan.io/uploads/6800cdb890767142c3d8cdd1/reports/eb9906f6-1dfe-4087-8eb2-d98228e2e850/overview
Verdict:
Unknown
Link:
https://www.hybrid-analysis.com/sample/bb374b50a81b3daa734062a8f087cc85bb675de908dea0a8154e686a466e9ce0
Score:
100%
Verdict:
Malware
File Type:
SCRIPT
Link:
https://malprob.io/report/bb374b50a81b3daa734062a8f087cc85bb675de908dea0a8154e686a466e9ce0
Detection:
n/a
Link:
https://mwdb.cert.pl/sample/bb374b50a81b3daa734062a8f087cc85bb675de908dea0a8154e686a466e9ce0/
Threat name:
Script-Shell.Downloader.Heuristic
Create hunting rule
Status:
Malicious
First seen:
2025-04-17 10:53:13 UTC
File Type:
Text (Shell)
AV detection:
10 of 24 (41.67%)
Threat level:
  2/5
Detection(s):
Suspicious file
Link:
https://check.spamhaus.org/check/?searchterm=xm3uwufidm62u42amkupbb6mqw5woxpjbdpkbkavjzugurtottqa._file
Result
Malware family:
n/a
Score:
  3/10
Tags:
n/a
Link:
https://tria.ge/reports/250417-rvgcrsv1dw/
Behaviour
Modifies registry class
Suspicious use of SetWindowsHookEx
Enumerates physical storage devices
Please note that we are no longer able to provide a coverage score for Virus Total.

File information

The table below shows additional information about this malware sample such as delivery method and external references.

Web download

Mirai

sh bb374b50a81b3daa734062a8f087cc85bb675de908dea0a8154e686a466e9ce0

(this sample)

Mirai

elf d56562d902250bba834b2c355be63c454e45651dda48e7e183d95f25db4b4857

  
URLhaus
https://urlhaus.abuse.ch/url/3514725/
  
Delivery method
Distributed via web download
  
Dropping
MD5 2d438135631f486ea5b1c0340437a7be
  
Dropping
SHA256 d56562d902250bba834b2c355be63c454e45651dda48e7e183d95f25db4b4857

Comments