MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 cdeb4d079f9e2db216fe842993e5aed9e72bc884aa2d3df998eb4a722873efd1. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


Intelligence 1 File information 2 Yara Comments

SHA256 hash: cdeb4d079f9e2db216fe842993e5aed9e72bc884aa2d3df998eb4a722873efd1
SHA3-384 hash: 6d0ea0176a1ec38a07a002f0ce4c8c2e4f2e9e67b86cf0a773cdc493c0806ce5b373b77a89bd452894b52360850ab7b0
SHA1 hash: 4e75615ac31954d3be0f62a677fcef0b0c9530bb
MD5 hash: 40afd91b787e1657b62dbe34cded3a83
humanhash: west-fillet-seventeen-cup
File name:09291_9326_uey.zip
Download: download sample
Signature n/a
File size:305'798 bytes
First seen:2020-06-30 05:27:28 UTC
Last seen:Never
File type: zip
MIME type:application/zip
ssdeep 6144:Va4D2mL1Zc0wi08+lfMwPVUR71/H/vHyLLwqmiBgSwxBU:s4SmLzc0MU0GR71/fvqsqMSf
TLSH 8E5423C579FB57ED21C5FE6783548B657729F00B00FF9BAA33104EB7A89BA22010D981
Reporter @cocaman
Tags:zip


Twitter
@cocaman
Malicious email
From: robix@fly.allthingsemily.com
Received: from fly.allthingsemily.com (fly.allthingsemily.com [45.140.16.27])
Date: Tue, 30 Jun 2020 03:57:37 +0300 (MSK)
Subject: Records, 465090, nicole helmers
Attachment: 09291_9326_uey.zip

Intelligence


Mail intelligence
Trap location Impact
CH Switzerland Low
# of uploads 1
# of downloads 29
Origin country FR FR
ClamAV SecuriteInfo.com.PUA.VBS-in-ZIP.UNOFFICIAL
CERT.PL MWDB Detection:n/a
Link: https://mwdb.cert.pl/sample/cdeb4d079f9e2db216fe842993e5aed9e72bc884aa2d3df998eb4a722873efd1/
ReversingLabs :Status:Malicious
Threat name:Script-VBS.Trojan.Kryptik
First seen:2020-06-30 05:29:05 UTC
AV detection:14 of 48 (29.17%)
Threat level:   2/5
VirusTotal:Virustotal results 7.94%

File information


The table below shows additional information about this malware sample such as delivery method and external references.

Malspam

zip cdeb4d079f9e2db216fe842993e5aed9e72bc884aa2d3df998eb4a722873efd1

(this sample)

  
Delivery method
Distributed via e-mail attachment

Comments