MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 4dbfb13d4372ce4d06fbe4a64ba98c892f051d5109ccb4533a9df91e0718dadf. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


Intelligence File information 3 Yara Comments

SHA256 hash: 4dbfb13d4372ce4d06fbe4a64ba98c892f051d5109ccb4533a9df91e0718dadf
SHA3-384 hash: 0f50490233c0f28bd62e2a2b19e7147980d690804e8175b0d26997fcf32bf1a507eea9413b52e68b849631a534c7e0ec
SHA1 hash: a2268e17462dd81a38aa8154a0658b3d2150ee28
MD5 hash: 3c6debb5eeddf2d67dd80f221ace9587
humanhash: social-hamper-fillet-harry
File name:09291_9326_uey.vbs
Download: download sample
Signature n/a
File size:711'109 bytes
First seen:2020-06-30 05:28:01 UTC
Last seen:Never
File type:Visual Basic Script (vbs) vbs
MIME type:text/plain
ssdeep 12288:lBy396y/vjfVKDeJWq1wiBOiKY6SzMhvSjwIH0i8d+V3FsziL3L6Oj:qrbwUwtziL+Oj
TLSH 9FE4D74A312A07F49C82156A28EF7DE53B8C4216DA9837553861DF3BE1ED03F90A53ED
Reporter @cocaman
Tags:vbs

Intelligence


Mail intelligence No data
# of uploads 1
# of downloads 33
Origin country FR FR
CAPE Sandbox Detection:n/a
Link: https://www.capesandbox.com/analysis/16768/
ClamAV SecuriteInfo.com.VBS.Dropper.CPtr.9717.UNOFFICIAL
CERT.PL MWDB Detection:n/a
Link: https://mwdb.cert.pl/sample/4dbfb13d4372ce4d06fbe4a64ba98c892f051d5109ccb4533a9df91e0718dadf/
ReversingLabs :Status:Malicious
Threat name:Script-VBS.Trojan.Siggen
First seen:2020-06-30 05:29:06 UTC
AV detection:8 of 31 (25.81%)
Threat level:   2/5
Hatching Triage Score:   7/10
Malware Family:n/a
Link: https://tria.ge/reports/200630-74251drw1e/
Tags:n/a
VirusTotal:Virustotal results 3.33%

File information


The table below shows additional information about this malware sample such as delivery method and external references.

Malspam

Visual Basic Script (vbs) vbs 4dbfb13d4372ce4d06fbe4a64ba98c892f051d5109ccb4533a9df91e0718dadf

(this sample)

Comments