Register Login

sloganpng

top title background image

Mozi.a

Status: finished

Submission Time: 2021-10-28 06:46:30 +02:00

Malicious

Spreader

Trojan

Mirai

Comments

Tags

Details

Analysis ID:
510721
API (Web) ID:
878287
Analysis Started:

2021-10-28 06:46:30 +02:00
Analysis Finished:

2021-10-28 06:51:46 +02:00
MD5:
e30a81d66f18f07647397d1defbad11b
SHA1:
a7fd1a1d71f7f7b00886741db52c42af0c8873f1
SHA256:
b7ba5aa2f8f7781d408e87b2131fa2cc9b95cdf3460f9778229398c9e851772a
Technologies:

Engines
IOCs

Joe Sandbox

Engine	Download Report	Detection	Info
	Full Report Management Report IOC Report	malicious Score: 92	System: Ubuntu Linux 20.04 x64 (Kernel 5.4.0-72, Firefox 91.0, Evince Document Viewer 3.36.10, LibreOffice 6.4.7.2, OpenJDK 11.0.11)
	Full Report Management Report IOC Report	clean 0/100

Third Party Analysis Engines

Open Full Report

malicious

Score: 39/61

Open Full Report

malicious

Score: 18/36

malicious

Score: 22/28

malicious

IPs

IP	Country	Detection
109.202.202.202	Switzerland
91.189.91.43	United Kingdom
91.189.91.42	United Kingdom

URLs

Name	Detection
http://%s:%d/Mozi.a;chmod
http://%s:%d/bin.sh
http://%s:%d/Mozi.a;sh$
Click to see the 15 hidden entries
http://%s:%d/bin.sh;chmod
http://schemas.xmlsoap.org/soap/envelope/
http://127.0.0.1sendcmd
http://%s:%d/Mozi.m
http://schemas.xmlsoap.org/soap/envelope//
http://baidu.com/%s/%s/%d/%s/%s/%s/%s)
http://127.0.0.1
http://HTTP/1.1
http://upx.sf.net
http://%s:%d/Mozi.m;$
http://%s:%d/Mozi.m;
http://purenetworks.com/HNAP1/
http://schemas.xmlsoap.org/soap/encoding/
http://%s:%d/Mozi.m;/tmp/Mozi.m
http://ipinfo.io/ip