MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 67e7fb3f912ecce73a18dadbef03a684cbae4f595fa62a43a673efafa4633c69. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


MassLogger


Vendor detections: 3


Intelligence 3 IOCs YARA File information Comments
Download sample Add tag Delete this sample Report a False Positive

SHA256 hash: 67e7fb3f912ecce73a18dadbef03a684cbae4f595fa62a43a673efafa4633c69
SHA3-384 hash: 63478fa08e2280ea3e57018c00ceb1fe764d6df96ff7705726aa9c79ba67eca04242097ca947362370a5f37d89cd6860
SHA1 hash: 702aea080b623086772e37ecc8e5a21d61f1c478
MD5 hash: 7982ce7ed35b7285c7aad06cd676f9eb
humanhash: spaghetti-victor-twenty-april
File name:SWIT BANK PAPER PAYMENT OF 84,867.06 USD..iso
Download: download sample
Signature MassLogger
Create hunting rule
File size:1'374'208 bytes
First seen:2020-07-10 05:30:51 UTC
Last seen:Never
File type: iso
MIME type:application/x-iso9660-image
ssdeep 24576:3IgpM+F6YHyDYFYUNSIY3HR6MKlIc3RYDLVsJ3DzXQZRmMGyTWQB2/VqJhTH:3I2aEFvNSIY3R6xy6yDLVsJzXQZwMGy1
TLSH DD55D026E2E04833C166263D9D1B776499EABE413D28AD463BFC1D4C9F396C23436397
Reporter cocaman
Tags:iso MassLogger


Avatar
cocaman
Malicious email
From: Reliza Escosio <Reliza.Escosio@foulath.com.bh>
Received: from foulath.com.bh (unknown [185.222.57.207])
Date: 10 Jul 2020 12:07:36 +0200
Subject: RE : DELIVERY PURCHASE ORDER AND ORIGINAL DOCUMENTS 5396306 // ORDER CONFIRMATION FOR W6 MAINTENANCE ROUTINES OF 02 X MU 16V 396
Attachment: SWIT BANK PAPER PAYMENT OF 84,867.06 USD..iso

Intelligence

File Origin
# of uploads :
1
# of downloads :
71
Origin country :
n/a
Vendor Threat Intelligence
Detection(s):
SecuriteInfo.com.Trojan.Delf.FareIt.Gen.7.17255.16370.UNOFFICIAL
Create hunting rule

Detection:
n/a
Link:
https://mwdb.cert.pl/sample/67e7fb3f912ecce73a18dadbef03a684cbae4f595fa62a43a673efafa4633c69/
Threat name:
Win32.Infostealer.Fareit
Create hunting rule
Status:
Malicious
First seen:
2020-07-10 05:32:08 UTC
File Type:
Binary (Archive)
Extracted files:
62
AV detection:
13 of 29 (44.83%)
Threat level:
  5/5
Detection(s):
Suspicious file
Link:
https://check.spamhaus.org/check/?searchterm=m7t7wp4rf3goooqy3ln66a5gqtf24t2zl6tcuq5gopx27jddhruq._file
Please note that we are no longer able to provide a coverage score for Virus Total.

File information

The table below shows additional information about this malware sample such as delivery method and external references.

Malspam

MassLogger

iso 67e7fb3f912ecce73a18dadbef03a684cbae4f595fa62a43a673efafa4633c69

(this sample)

MassLogger

Executable exe f316c85b920176e192357ff4b735f6d1b99fd7af2f23e24b80e3aef4fd2522ba

  
Delivery method
Distributed via e-mail attachment
  
Dropping
SHA256 f316c85b920176e192357ff4b735f6d1b99fd7af2f23e24b80e3aef4fd2522ba

Comments