MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 c4e2bb0993f8431e546724e0d1d2a07c2d10d444d62368880253c52430e6e814. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


Intelligence File information 1 Yara Comments

SHA256 hash: c4e2bb0993f8431e546724e0d1d2a07c2d10d444d62368880253c52430e6e814
SHA3-384 hash: d1866047f29fce8de47feb18b8d3b62beac8233966f7eff11e4973522d996ccdfe313c245978d64c56207d81a45873a6
SHA1 hash: 7c7294d93b94a2973b1005841b28f0e16e2cd643
MD5 hash: 1347714fa273a35963cd226b2afcfd08
humanhash: ohio-cola-red-nevada
File name:6445012_9798_bsbih.zip
Download: download sample
Signature n/a
File size:269'645 bytes
First seen:2020-06-30 05:03:41 UTC
Last seen:Never
File type: zip
MIME type:application/zip
ssdeep 6144:ulY3B90t2zqSAhLoouvfJnr9qllf7H25bb/JrFRE5P8fm9tAm3j2:g5t2ONLoHZr9qllf72Zx05PkiAm3q
TLSH C6442328BE42C8FD0C179B554D6E1EE1FF1D9BAB062845D01E3B2ED1BB18903B62035E
Reporter @jarumlus

Intelligence


Mail intelligence No data
# of uploads 1
# of downloads 30
Origin country US US
ClamAV SecuriteInfo.com.PUA.VBS-in-ZIP.UNOFFICIAL
CERT.PL MWDB Detection:n/a
Link: https://mwdb.cert.pl/sample/c4e2bb0993f8431e546724e0d1d2a07c2d10d444d62368880253c52430e6e814/
ReversingLabs :Status:Malicious
Threat name:Script-VBS.Trojan.Kryptik
First seen:2020-06-30 05:05:04 UTC
AV detection:13 of 48 (27.08%)
Threat level:   2/5
VirusTotal:No data

File information


The table below shows additional information about this malware sample such as delivery method and external references.

Malspam

zip c4e2bb0993f8431e546724e0d1d2a07c2d10d444d62368880253c52430e6e814

(this sample)

  
Delivery method
Distributed via e-mail attachment

Comments