MalwareBazaar Database
You are currently viewing the MalwareBazaar entry for SHA256 225bfeff04449cc6befac6f17506eccba8578b4b4b31dafbaa1386533744b024. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.
Database Entry
NanoCore
Vendor detections: 3
| SHA256 hash: | 225bfeff04449cc6befac6f17506eccba8578b4b4b31dafbaa1386533744b024 |
|---|---|
| SHA3-384 hash: | 0e3dd2438a265f829970bce5865640487631c301894d7a379200a53ce9a5d0b7be6688260045b7060c23f03e90e1950a |
| SHA1 hash: | 3e8c465b6d8aaeceaa6bc9d26afff7e2d86c85af |
| MD5 hash: | d71276b6d2bab850537e3cb0a446fcf0 |
| humanhash: | illinois-coffee-indigo-minnesota |
| File name: | Invoice Ex 21x40HQ---urgent (2).gz |
| Download: | download sample |
| Signature | NanoCore |
| File size: | 454'407 bytes |
| First seen: | 2020-03-24 14:01:01 UTC |
| Last seen: | Never |
| File type: | gz |
| MIME type: | application/x-rar |
| ssdeep | 12288:HkXQIdIMVCnwZQfRseXpdt7Mteq+gsJsW2a+:HkX/dljZQRRXpnMkqrsXP+ |
| TLSH | 9FA423B8448EA4D3AD3919337847FEB9052BC40217E2476D84EC0467D6D5CEFBB263A9 |
| Reporter |  cocaman |
| Tags: | gz NanoCore |
Intelligence
File Origin
# of uploads :
1
# of downloads :
74
Origin country :
n/a
Vendor Threat Intelligence
Gathering data
Threat name:
Win32.Trojan.Injector
Status:
Malicious
First seen:
2020-03-24 14:48:16 UTC
File Type:
Binary (Archive)
Extracted files:
37
AV detection:
23 of 46 (50.00%)
Threat level:
5/5
Detection(s):
Suspicious file
Please note that we are no longer able to provide a coverage score for Virus Total.
File information
The table below shows additional information about this malware sample such as delivery method and external references.
Malspam
exe Delivery method
Distributed via e-mail attachment
Comments
Login required
You need to login to in order to write a comment. Login with your abuse.ch account.