MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 c01b98c293313d1f3b50ee7bc143e48b04fe2b9f69d00c83ce3b7a9c23cd7f33. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


Threat unknown


Vendor detections: 7


Intelligence 7 IOCs YARA File information Comments
Download sample Add tag Delete this sample Report a False Positive

SHA256 hash: c01b98c293313d1f3b50ee7bc143e48b04fe2b9f69d00c83ce3b7a9c23cd7f33
SHA3-384 hash: 35b8c584ed6c2f6c0b5cc74b5e57231b10871ff21b0f12a9c3f1a5ed21d5eed2420867d451ce0886c721d124faa7cbec
SHA1 hash: dfe0304de152f77d5b12127359789e96bf9148ea
MD5 hash: 47154c987f3abdd53e1cc1a3d4f65939
humanhash: alabama-beer-leopard-pluto
File name:shi
Download: download sample
File size:291 bytes
First seen:2025-09-20 09:27:19 UTC
Last seen:2025-09-20 20:15:42 UTC
File type: sh
MIME type:text/x-shellscript
ssdeep 6:hftJ+pUKUF2RVYs5CYf53IFgo3FoF/fkVKhOXqIKXD73IKX+N1IEWYq1IKBKW:ZtJ+jREYB/F0ghsOTh4WYO8W
TLSH T114D0CD59F842087378744C7866D72855910B910B5E06548E3589521ADAE4920A050153
Magika shell
Reporter abuse_ch
Tags:sh

Intelligence

File Origin
# of uploads :
2
# of downloads :
46
Origin country :
DE DE
Vendor Threat Intelligence
Detection(s):
SecuriteInfo.com.Linux.Downloader-23.UNOFFICIAL
Create hunting rule

Verdict:
Likely Malicious
Threat level:
  7.5/10
Confidence:
100%
Link:
https://www.filescan.io/uploads/68ce738473af424b47e8713c/reports/ba0684c5-f00d-4d8f-9f1d-7e3f957d081c/overview
Verdict:
Malicious
Labled as:
Bash.MiraiB.Generic
Link:
https://www.hybrid-analysis.com/sample/c01b98c293313d1f3b50ee7bc143e48b04fe2b9f69d00c83ce3b7a9c23cd7f33
Verdict:
Malicious
File Type:
unix shell
First seen:
2025-09-20T07:30:00Z UTC
Last seen:
2025-09-20T07:30:00Z UTC
Hits:
~10
Link:
https://opentip.kaspersky.com/c01b98c293313d1f3b50ee7bc143e48b04fe2b9f69d00c83ce3b7a9c23cd7f33/results?tab=lookup
Score:
100%
Verdict:
Malware
File Type:
SCRIPT
Link:
https://malprob.io/report/c01b98c293313d1f3b50ee7bc143e48b04fe2b9f69d00c83ce3b7a9c23cd7f33
Detection:
n/a
Link:
https://mwdb.cert.pl/sample/c01b98c293313d1f3b50ee7bc143e48b04fe2b9f69d00c83ce3b7a9c23cd7f33/
Threat name:
Linux.Downloader.MiraiB
Create hunting rule
Status:
Malicious
First seen:
2025-09-20 10:12:19 UTC
File Type:
Text (Shell)
AV detection:
16 of 36 (44.44%)
Threat level:
  3/5
Detection(s):
Suspicious file
Link:
https://check.spamhaus.org/check/?searchterm=yanzrqutge6r6o2q5z54cq7ermcp4k47nhiaza6ohn5jyi6np4zq._file
Please note that we are no longer able to provide a coverage score for Virus Total.

File information

The table below shows additional information about this malware sample such as delivery method and external references.

Web download

sh c01b98c293313d1f3b50ee7bc143e48b04fe2b9f69d00c83ce3b7a9c23cd7f33

(this sample)

  
URLhaus
https://urlhaus.abuse.ch/url/3627140/
  
Delivery method
Distributed via web download

Comments