MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 3bd940aa8cce3f10808d20494f3f10b34502a14321ea9bb50123016d82c2203f. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


Threat unknown


Vendor detections: 3


Intelligence 3 IOCs YARA File information Comments
Download sample Add tag Delete this sample Report a False Positive

SHA256 hash: 3bd940aa8cce3f10808d20494f3f10b34502a14321ea9bb50123016d82c2203f
SHA3-384 hash: 0243f739c49581ac3119d71c32b1f19f20d120ff816c56afc445639d777a2607e52c06f7cdf8092070c7c4ce32223859
SHA1 hash: 15f652677a01ff883662355fe3321344a93601a0
MD5 hash: cbe93297db6a6936d5f4a599d65d35ef
humanhash: ink-quiet-equal-bakerloo
File name:3bd940aa8cce3f10808d20494f3f10b34502a14321ea9bb50123016d82c2203f
Download: download sample
File size:320'432 bytes
First seen:2020-06-03 09:01:31 UTC
Last seen:Never
File type:Executable exe
MIME type:application/x-dosexec
imphash 3b20c7649758636dc8998f8656851d0c
ssdeep 6144:Exe3lRwv1t5PdEkyTuIQEoSJuEFj7U5Ejjk3CxOoo9f+2Ug:EI3lO0kyTPQwJnOIjkwOp9fbUg
Threatray 12 similar samples on MalwareBazaar
TLSH 5364BF227692C433E16710758E61C7B5AFFAF87119729847E7D60F5EAF202E1CB29306
Reporter raashidbhatt
Tags:exe

Intelligence

File Origin
# of uploads :
1
# of downloads :
56
Origin country :
n/a
Vendor Threat Intelligence
Detection(s):
PUA.Win.Downloader.Aiis-6803892-0
Create hunting rule

Gathering data
Threat name:
Win32.Virus.Sality
Create hunting rule
Status:
Malicious
First seen:
2020-06-03 11:08:18 UTC
AV detection:
31 of 31 (100.00%)
Threat level:
  5/5
Verdict:
malicious
Similar samples:
074a27ca162b894fea8bd9446e45b40e5342a07024589f3ad28e873d7fd9d8c8
087df168d78dcfd730fb669aad4b848c054f08cbab3c722c87a0be0aa5c598a7
12a61e3e74a6aa8bebe2164a57985fbbb2781d40e30cc5be1b62f5cb70a6bfed
59a2b8cc856bd455ef153acb5f1848c7da1aee9d0042900dbb29ef1e1262597a
7564394cdf95f47b753662ee9240197a1b54a218a92efca79e873c2d6fb04544
854cd8ed0a2fb46f52cf610b77191562496c88eafa088cd2980d9c21bc3e8aa1
972f3786bcfaaae846c2d1d61cc148e8d3621e75a2fdac7dbf6e35d0b0ad29f3
a618654d80abab200243945d1fb26204acb5bcc6e145656b8fb7152d8ab6a52e
bca3dd6800880d3893f4fef0a3eb9ae48ee22974a48a674a9db0af274678b4e6
ca7b714d4501ec386efecaecdd0181d83de489321ddbd38da8efeb9925dc7bef
+ 2 additional samples on MalwareBazaar
Result
Malware family:
n/a
Score:
  8/10
Tags:
upx
Link:
https://tria.ge/reports/201109-eg3z188et6/
Behaviour
UPX packed file
Please note that we are no longer able to provide a coverage score for Virus Total.

File information

The table below shows additional information about this malware sample such as delivery method and external references.

Comments