MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 b4e670799c0a241b69b231fd9a1d3c2e2a29b4d4d67c9bf746c01a6f19b0210d. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


Intelligence File information 1 Yara Comments

SHA256 hash: b4e670799c0a241b69b231fd9a1d3c2e2a29b4d4d67c9bf746c01a6f19b0210d
SHA3-384 hash: fc808ad5f64c118cd71fd1f1dbb2a543b5a0e41993ff538f7c980b6ac8fe6ad5299eb675b0ea5f82f5bb44edbdb3c88e
SHA1 hash: b0f82f74e83ae8889fb12eff14df8222691fdc85
MD5 hash: 0f271d5dc6c29b54a3eab8089bbeddc8
humanhash: west-mango-orange-lamp
File name:tmp6a82c_offshorededi.sh
Download: download sample
Signature n/a
File size:105 bytes
First seen:2020-04-13 05:55:56 UTC
Last seen:Never
File type: sh
MIME type:text/plain
ssdeep 3:GRF/cNMLWOFDOSaMFeiBZYUN5T:S/cNqDVvB7D
TLSH A5B0926E33225F0033428F0C36F14420E000C4C4511B428DE0FC481E609CA2A322414D
Reporter @defconisov3r
Tags:sh

Intelligence


Mail intelligence No data
# of uploads 1
# of downloads 1'802
Origin country US US
ClamAV No detection
CERT.PL MWDB Gathering data
ReversingLabs :Status:Malicious
Threat name:Script-Shell.Downloader.Generic
First seen:2020-04-13 18:49:12 UTC
AV detection:2 of 45 (4.44%)
Threat level:   2/5
VirusTotal:No data

File information


The table below shows additional information about this malware sample such as delivery method and external references.

  
Delivery method
Other

Comments