Overview

overview

10

Static

static

10

usr/bin/ygljglkjgfg0

ubuntu-22.04-amd64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    malware_ygljglkjgfg0.zip

  • Size

    251KB

  • MD5

    e60a7783bef03817b79cfb1df14591a9

  • SHA1

    529f3a8f3472c06695715f62c83b59c418be4c22

  • SHA256

    fe4d37f48c5932d71dba259f8eebd5b3eb7c9aa5bfd8d27146a225a3f9dc9927

  • SHA512

    2b9d67ed0d8e9663a25f20d86dedf821eb7c98042da0980c5a151ab012c28cb25ad6df15723219ce7482e0fb8b478e61069defddfd1d59a08a648c1e77900852

  • SSDEEP

    3072:gPwufD6uyL2APl9ONW4K6h90MOQOgOJZzuZ1RsoUzjWz0QTm1OlZvRVnxiYEr+7W:gPtm5RtA8o4DgZmm4zOtVxiPLrLTsjxC

Score
10/10
xorddos

Malware Config

Extracted

Family

xorddos

C2

https://ww.aass654.com/config.rar

ee.aass654.com:1520

ee.xxcc789.com:1520

ee.vvbb321.com:1520

ee.jjkk567.com:1520

ee.nnmm234.com:1520
Attributes
  • crc_polynomial

    EDB88320

xor.plain

Signatures

  • XorDDoS payload 1 IoCs
  • Xorddos family
    xorddos

Files

  • malware_ygljglkjgfg0.zip
    .zip

    Password: infected

  • usr/bin/ygljglkjgfg0
    .elf linux x86