MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 7f6fc0213951a9c9ed9b0479908dc0d956747c7a75f39b0fc107aba4149a3849. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


Intelligence 1 File information 1 Yara Comments

SHA256 hash: 7f6fc0213951a9c9ed9b0479908dc0d956747c7a75f39b0fc107aba4149a3849
SHA3-384 hash: 1f33f93bdbfddb98fdc2684a6ebb915cfb2d8e2ec350ff4c504356d73285057a7976c81106a4310cdb8b63e4347bd301
SHA1 hash: 2a9e1aa96e929d65de81bb2ee19dea7fe46e9002
MD5 hash: 0c4a26cd0903b3684786bbd6bfb16cfc
humanhash: wolfram-avocado-early-early
File name:79077_5276_llx.zip
Download: download sample
Signature n/a
File size:270'004 bytes
First seen:2020-06-30 04:50:49 UTC
Last seen:Never
File type: zip
MIME type:application/zip
ssdeep 6144:zlY3B90t2zqSAhLoouvfJnr9qllf7H25bb/JrFRE5P8R6HQo:55t2ONLoHZr9qllf72Zx05PBQo
TLSH 7D442228BA51C8FD1C17D7514CBE3DA1BF1E9B9FA67485412E3B2FD1AB0410BE96018D
Reporter @jarumlus

Intelligence


Mail intelligence
Trap location Impact
CH Switzerland Low
# of uploads 1
# of downloads 29
Origin country US US
ClamAV SecuriteInfo.com.PUA.VBS-in-ZIP.UNOFFICIAL
CERT.PL MWDB Detection:n/a
Link: https://mwdb.cert.pl/sample/7f6fc0213951a9c9ed9b0479908dc0d956747c7a75f39b0fc107aba4149a3849/
ReversingLabs :Status:Malicious
Threat name:Script-VBS.Trojan.Kryptik
First seen:2020-06-30 04:52:05 UTC
AV detection:6 of 48 (12.50%)
Threat level:   2/5
VirusTotal:No data

File information


The table below shows additional information about this malware sample such as delivery method and external references.

Malspam

zip 7f6fc0213951a9c9ed9b0479908dc0d956747c7a75f39b0fc107aba4149a3849

(this sample)

  
Delivery method
Distributed via e-mail attachment

Comments