MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 20ac16ad98ad222cf34abea11a5bd2aa3155d8c9ab46fc225afeaefc4c5dac5c. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


Intelligence 1 File information 1 Yara Comments

SHA256 hash: 20ac16ad98ad222cf34abea11a5bd2aa3155d8c9ab46fc225afeaefc4c5dac5c
SHA3-384 hash: 1d15814186dbd91bd2c99caf5f02c64fcfd66143c532ccd7b16dad3435bf208b7531c9ffb506a16b3db8c670c71a0f7b
SHA1 hash: e6f49be19b80468d60d98ff593ddb60da63d38bd
MD5 hash: 1a20aef58628aa7db95b535558369c86
humanhash: aspen-november-fish-blossom
File name:3851_46258_omuhh.zip
Download: download sample
Signature n/a
File size:261'664 bytes
First seen:2020-06-30 05:08:48 UTC
Last seen:Never
File type: zip
MIME type:application/zip
ssdeep 6144:elY3B90t2zqSAhLoouvfJnr9qllf7H25bb/JrFRE5P8Gvj5UOwp:w5t2ONLoHZr9qllf72Zx05PvSBp
TLSH 2544233CB942C8FD0C27D6014DAD2EB0BF2EEF9F726895555E3B6ED06B1414BA64018E
Reporter @jarumlus

Intelligence


Mail intelligence
Trap location Impact
CH Switzerland Low
# of uploads 1
# of downloads 30
Origin country US US
ClamAV SecuriteInfo.com.PUA.VBS-in-ZIP.UNOFFICIAL
CERT.PL MWDB Detection:n/a
Link: https://mwdb.cert.pl/sample/20ac16ad98ad222cf34abea11a5bd2aa3155d8c9ab46fc225afeaefc4c5dac5c/
ReversingLabs :Status:Malicious
Threat name:Script-VBS.Trojan.Foretype
First seen:2020-06-30 05:10:06 UTC
AV detection:7 of 48 (14.58%)
Threat level:   5/5
VirusTotal:No data

File information


The table below shows additional information about this malware sample such as delivery method and external references.

Malspam

zip 20ac16ad98ad222cf34abea11a5bd2aa3155d8c9ab46fc225afeaefc4c5dac5c

(this sample)

  
Delivery method
Distributed via e-mail attachment

Comments