MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 abb1ab8f4740a173c348ecb000bb93361949655d05daf5ee14b57f986dc5ff26. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


Intelligence File information Yara Comments

SHA256 hash: abb1ab8f4740a173c348ecb000bb93361949655d05daf5ee14b57f986dc5ff26
SHA3-384 hash: b4bcc942669e20d5518de2f890da68631d8ea444a61fc7a3ee1f841e7f934c90ac70e79d630d07f486426d452aec8c86
SHA1 hash: 8b7429c9c75fd7d47d882370dbe94b822d8d2d0e
MD5 hash: 0de3521d7e7896027a6b14e449d9de51
humanhash: venus-sixteen-paris-earth
File name:control.dat
Download: download sample
Signature n/a
File size:229'376 bytes
First seen:2020-06-30 04:56:42 UTC
Last seen:Never
File type:unknown
MIME type:text/plain
ssdeep 6144:5LsZp/Bwz4wrPF5AX9dpSu+JmT3qHO+8sfU0EtrE+V7p2YCEM3VHmLafJcMk9tWO:5LsZp/0FuXjpSu+JmT6HO+8sfUV4+V75
TLSH 4D2401420B9DD663E0526F407C42F6916A1AF42A77EC8A7B34779362FA6F01110EF71E
Reporter @2OsCBzCQDoLdHT9
Tags:FormBook

Intelligence


Mail intelligence No data
# of uploads 1
# of downloads 35
Origin country KR KR
ClamAV SecuriteInfo.com.Trojan.Agent.bzta.1015.UNOFFICIAL
CERT.PL MWDB Detection:n/a
Link: https://mwdb.cert.pl/sample/abb1ab8f4740a173c348ecb000bb93361949655d05daf5ee14b57f986dc5ff26/
ReversingLabs :Status:Malicious
Threat name:Win32.Spyware.Coinsteal
First seen:2020-06-30 04:58:05 UTC
AV detection:1 of 31 (3.23%)
Threat level:   2/5
VirusTotal:Virustotal results 5.08%

File information


The table below shows additional information about this malware sample such as delivery method and external references.

Comments