Report - 198.12.70.119/top1hbt.arm5

Report Overview

Visitedpublic

2024-04-07 23:36:45

urlquery

Network Intrusion Detection

Threat Detection Systems

Host Summary

Host	Rank	Registered	First Seen	Last Seen	Sent	Received	IP	Fingerprints
198.12.70.119	unknown	unknown	2015-12-15 09:08:03	2016-01-31 14:45:10	396 B	130 kB	198.12.70.119

Scan Date	Severity	Indicator	Alert
2024-04-07	medium	198.12.70.119/top1hbt.arm5	Linux.Trojan.Gafgyt

No alerts detected

No alerts detected

No alerts detected

Scan Date	Severity	Indicator	Alert
2024-04-07	medium	198.12.70.119	Sinkholed

No alerts detected

URL

198.12.70.119/top1hbt.arm5

IP / ASN

198.12.70.119

#36352 AS-COLOCROSSING

File Overview

File TypeELF 32-bit LSB executable, ARM, version 1 (ARM)

Size130 kB (129792 bytes)

MD59bb90751af6edd3eb9d81bd52f3e3bf0

SHA161ff6dac575da556184300623ba59611ade1e5c3

SHA25689071c5ffe243000bd03d254e77ee0b59df2d56ff2a5b8a846f5e1afb9d3ef7f

Analyzer	Verdict	Alert
Elastic Security YARA Rules	malware	Linux.Trojan.Gafgyt
VirusTotal	malicious	VirusTotal - Scan result 28/63

	URL	IP	Response	Size