MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 0d9e3fbd517581e750068e827ea17b9b0ff8effeafd803183573212b996de7e0. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry

Intelligence File information 3 Yara Comments

SHA256 hash: 0d9e3fbd517581e750068e827ea17b9b0ff8effeafd803183573212b996de7e0
SHA3-384 hash: 9845de29284dd03e4b0a908657d0de0a1e2d9d775748b915cf4a654001a919efcb54d143e12c8b42a1f737c8522037c8
SHA1 hash: fe5116f7f3ff81e6a37a05af457bf0a1381f2503
MD5 hash: 71f704316c0674ab2b7bf8568ab0982f
humanhash: georgia-ink-mike-salami
File name:rnp_txt
Download: download sample
Signature n/a
File size:486'554 bytes
First seen:2020-06-30 06:39:50 UTC
Last seen:Never
File type:unknown
MIME type:text/plain
ssdeep 1536:tmoRjd978sxFOAqIoHYN06LcFu4xCyoZbmbE/oHnDjVFt9OPMq4ZnlkvSVxY7p75:Ca
TLSH 4BA49A8156BBD66C09CA2CD266C8370D689DBC9F2D496139FE81079ED03EC9D8D93B70


Mail intelligence No data
# of uploads 1
# of downloads 28
Origin country IT IT
CERT.PL MWDB Detection:n/a
ReversingLabs :Status:Malicious
Threat name:Script-PowerShell.Trojan.Bzbdczf
First seen:2020-06-30 06:41:07 UTC
AV detection:9 of 31 (29.03%)
Threat level:   2/5
VirusTotal:No data

File information

The table below shows additional information about this malware sample such as delivery method and external references.

Web download

unknown 0d9e3fbd517581e750068e827ea17b9b0ff8effeafd803183573212b996de7e0

(this sample)

Delivery method
Distributed via web download