IOC LOOKUP
// SEARCH IP, DOMAIN, HASH, OR URL AGAINST OTX THREAT INTELLIGENCE
Indicator of Compromise Search
✦ IPv4 Address
✦ Domain
✦ MD5/SHA1/SHA256 Hash
✦ URL
INDICATOR
c4fde7b5f61eb4e22eeaca30c08ee1c2
55
/100
HIGH
CONFIDENCE LEVEL
THREAT CONFIDENCE ANALYSIS
HIGH
55/100 confidence
Strong evidence of malicious activity across multiple sources. Prioritise investigation.
CLEAN
LOW
MED
HIGH
CRIT
0
25
50
75
100
OTX
10/30
2 pulses
VIRUSTOTAL
35/35
40/76 detected
ABUSEIPDB
—/25
IPv4 only
URLHAUS
10/10
LISTED
General Information
| Hash | c4fde7b5f61eb4e22eeaca30c08ee1c2 |
| File Type | FileHash-MD5 |
AlienVault OTX Analysis
↗ View on OTX
2
PULSE HITS
| Pulse Hits | 2 |
| Indicator Type | MD5 |
| Threat Level |
ASSOCIATED PULSES
| PULSE NAME | DATE |
|---|---|
| 2024-11-01 | |
| 2024-11-06 |
VirusTotal Analysis
↗ View on VirusTotal
40/76
DETECTIONS
MALICIOUS
| Malicious | 40 |
| Suspicious | 0 |
| Harmless | 0 |
| Undetected | 24 |
| Reputation | -2 |
| File Name | 784890.exe |
| File Type | ELF |
| File Size | 37.2 KB |
TOP DETECTIONS
| VENDOR | RESULT |
|---|---|
| ALYac | Trojan.Linux.Mirai.AMCD |
| AVG | ELF:Mirai-BYP [Trj] |
| AhnLab-V3 | Worm/Linux.Mirai.SE286 |
| Antiy-AVL | Trojan[Backdoor]/Linux.Mirai.gen |
| Arcabit | Trojan.Linux.Mirai.AMCD |
| Avast | ELF:Mirai-BYP [Trj] |
| Avast-Mobile | ELF:Mirai-AQY [Trj] |
| Avira | ANDROID/AVE.Mirai.orcwe |
| BitDefender | Trojan.Linux.Mirai.AMCD |
| CTX | elf.trojan.mirai |
URLhaus (abuse.ch)
↗ View on URLhaus
⚠ LISTED
URLHAUS
| URLs Found | 18 |
| First Seen | 2024-10-27 |
| Malware | Gafgyt |
| File Type | elf |
ASSOCIATED URLs
| URL | STATUS / TYPE | DATE |
|---|---|---|
| http://stats.search-st1.com/bins/nabsh4 | offline | — |
| http://www.185-150-24-68.cprapid.com/bins/nabsh4 | offline | — |
| http://search-spd.com/bins/nabsh4 | offline | — |
| http://search-jrd.com/bins/nabsh4 | offline | — |
| http://search-gld.com/nabsh4 | offline | — |