MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 0a1f36c4afa34874089820dd27d7ae4f845716d3696402b3d37340ddcde14748. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry

Intelligence 1 File information 3 Yara Comments

SHA256 hash: 0a1f36c4afa34874089820dd27d7ae4f845716d3696402b3d37340ddcde14748
SHA3-384 hash: 129194bd806a8a9762b9ba3a79e83b056514bf447f723b67e70e2c8a92d7bba49c424d640856a61a61d8cbcbdf1c1e21
SHA1 hash: e5bf541e7eba66fdb6f46828bba91bad097e899d
MD5 hash: 0c6047cc49f2e9beece2661134d9ba5c
humanhash: sweet-london-oxygen-california
File name:BOQs.7z
Download: download sample
Signature n/a
File size:384'311 bytes
First seen:2020-06-30 05:25:24 UTC
Last seen:Never
File type: 7z
MIME type:application/x-7z-compressed
ssdeep 6144:f55HD0yVzoc6n5nJdRP56ZtOAtmhJSwitcnTWnKF4wC+2F5fqJo+fYNAgi7QQhmM:focWtRknO2mhotC4FRiQsm1+0TozZdR1
TLSH 7B8423A0284B4BF30C2BFE78E8D4C6668D8784921010E1B747DE5BE917B5B5C9D06F2B
Reporter @cocaman
Tags:7z AgentTesla

Malicious email
From: Alii mohamed <>
Received: from (unknown [])
Date: 29 Jun 2020 14:40:33 -0700
Subject: FW: Sachi West Tender Kitchen Package RFQ
Attachment: BOQs.7z


Mail intelligence
Trap location Impact
CH Switzerland Low
IT Italy Low
Global High
NL Netherlands Low
# of uploads 1
# of downloads 26
Origin country FR FR
CERT.PL MWDB Detection:n/a
ReversingLabs :Status:Malicious
Threat name:ByteCode-MSIL.Trojan.Kryptik
First seen:2020-06-29 21:40:56 UTC
AV detection:19 of 31 (61.29%)
Threat level:   2/5
VirusTotal:Virustotal results 41.94%

File information

The table below shows additional information about this malware sample such as delivery method and external references.


7z 0a1f36c4afa34874089820dd27d7ae4f845716d3696402b3d37340ddcde14748

(this sample)

Delivery method
Distributed via e-mail attachment