MalwareBazaar Database
You are currently viewing the MalwareBazaar entry for SHA256 9abf918e309be8c2e119d5cf521c49f37d8201ada3f5b59d5578ee2c250a60e2. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.
Database Entry
Threat unknown
Vendor detections: 3
| SHA256 hash: | 9abf918e309be8c2e119d5cf521c49f37d8201ada3f5b59d5578ee2c250a60e2 |
|---|---|
| SHA3-384 hash: | f8d22208e74d4d65a94ec9cb584b902089599df573b33f02875d0e3e41707d6bbff46a844f553c0883c3cca7ef67c4ed |
| SHA1 hash: | 5261c67d1df5de25b3dced65a37de05dac8d2428 |
| MD5 hash: | 894dc578a38d790e064e589faef05167 |
| humanhash: | robin-black-crazy-fanta |
| File name: | Dhl shipment documents.gz |
| Download: | download sample |
| File size: | 688'745 bytes |
| First seen: | 2020-07-07 05:05:14 UTC |
| Last seen: | Never |
| File type: | gz |
| MIME type: | application/x-rar |
| ssdeep | 12288:k2xWetPhi1rwgAtqnKa1cfW1OFcio7u8WJdPr2SFrRKMRSekzWfz7n9GZsTszHIs:18etPhivALVu1xipHJVr2CoXgf/9GtH5 |
| TLSH | CFE42359BA3C4044726CAA0C1C06BBC785AE5FEEC37CE43061680597FABF5AF5D58728 |
| Reporter |  jarumlus |
Intelligence
File Origin
# of uploads :
1
# of downloads :
68
Origin country :
n/a
Vendor Threat Intelligence
Threat name:
ByteCode-MSIL.Trojan.AgentTesla
Status:
Malicious
First seen:
2020-07-07 05:07:03 UTC
AV detection:
15 of 29 (51.72%)
Threat level:
5/5
Detection(s):
Suspicious file
Please note that we are no longer able to provide a coverage score for Virus Total.
File information
The table below shows additional information about this malware sample such as delivery method and external references.
Malspam
gz 9abf918e309be8c2e119d5cf521c49f37d8201ada3f5b59d5578ee2c250a60e2
(this sample)
exe Delivery method
Distributed via e-mail attachment
Comments
Login required
You need to login to in order to write a comment. Login with your abuse.ch account.