MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 0a1375c20684fb7bba86548825e2e16ce0ad34c21da4b562e8774df154aa8c67. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


Intelligence 1 File information 1 Yara Comments

SHA256 hash: 0a1375c20684fb7bba86548825e2e16ce0ad34c21da4b562e8774df154aa8c67
SHA3-384 hash: d409917ed85adcdde490668c9aaf675b0aa3f39cea7b9b269afe302477979d261b9399d9a88531dc6e2e579aa38a7d86
SHA1 hash: 96d68292340b501e493d6f27de152a54a24a912e
MD5 hash: d38ce427987ab78626c7952bfbc13a5d
humanhash: paris-oxygen-stream-early
File name:copy of remittance.cab
Download: download sample
Signature n/a
File size:83 bytes
First seen:2020-05-14 07:37:53 UTC
Last seen:Never
File type: cab
MIME type:application/octet-stream
ssdeep 3:wmlBl5//lulUVFcOqBELXrn:wSFtqUVuOqBETrn
TLSH 5DA002038E062004EDA18939E405070252C66A05B514C6AB504322A659AB5D05BB0487
Reporter @cocaman
Tags:cab


Twitter
@cocaman
Malicious email
From: Mr.Masum <info@nama-nms.com>
Received: from nama-nms.com (unknown [185.222.58.142])
Date: 14 May 2020 00:37:02 -0700
Subject: Released your payment
Attachment: copy of remittance.cab

Intelligence


Mail intelligence
Trap location Impact
CH Switzerland Low
IT Italy Low
Global High
# of uploads 1
# of downloads 1'816
Origin country FR FR
ClamAV No detection
CERT.PL MWDB Gathering data
ReversingLabs :Status:Benign
Threat name:No data
First seen:2020-05-14 08:36:02 UTC
AV detection:No data
Trust factor:
VirusTotal:Virustotal results 0.00%

File information


The table below shows additional information about this malware sample such as delivery method and external references.

Malspam

cab 0a1375c20684fb7bba86548825e2e16ce0ad34c21da4b562e8774df154aa8c67

(this sample)

  
Delivery method
Distributed via e-mail attachment

Comments