MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 f24e1c5f138c542807c4d26909a845c22bee47f4b9692fd70ae71805d80f4d57. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


Intelligence 2 File information 1 Yara Comments

SHA256 hash: f24e1c5f138c542807c4d26909a845c22bee47f4b9692fd70ae71805d80f4d57
SHA3-384 hash: a6136d53bfee7de86ef9e9b7378cd2dfb2ddcef517e1f543f6cc3c7d3be4d47c3899db679803a05703c9fb94961e047d
SHA1 hash: 9840206c43887a50af2eaf92c95b7aac28d65067
MD5 hash: 0ca8d118f5947686ead6efd744ff4ab0
humanhash: burger-hot-hot-eleven
File name:Documentation-3638860794.zip
Download: download sample
Signature n/a
File size:853'228 bytes
First seen:2020-06-30 04:58:41 UTC
Last seen:Never
File type: zip
MIME type:application/zip
ssdeep 24576:ocluhOxaZqhAO9ncFwlQcwZrGnlQPLemtF9F4Zd6HIrRKbJiC:ociOQZk9nbwalQPqmtF9W6H6QbJ/
TLSH 5F0533B60867EEA48B0153374747B32BFB626AA5B7298C18ED044E4C0549CFBD51B1FE
Reporter @jarumlus

Intelligence


Mail intelligence
Trap location Impact
Global Medium
CH Switzerland Low
# of uploads 1
# of downloads 26
Origin country FR FR
ClamAV SecuriteInfo.com.JS.Obfus-2119.UNOFFICIAL
TwinWave.EvilDoc.DridexBrokenWings.20200508.UNOFFICIAL
CERT.PL MWDB Detection:n/a
Link: https://mwdb.cert.pl/sample/f24e1c5f138c542807c4d26909a845c22bee47f4b9692fd70ae71805d80f4d57/
ReversingLabs :Status:Malicious
Threat name:Win32.Trojan.Mrbq
First seen:2020-06-29 12:43:36 UTC
AV detection:13 of 30 (43.33%)
Threat level:   2/5
Spamhaus Hash Blocklist :Suspicious file
VirusTotal:Virustotal results 26.56%

File information


The table below shows additional information about this malware sample such as delivery method and external references.

Malspam

zip f24e1c5f138c542807c4d26909a845c22bee47f4b9692fd70ae71805d80f4d57

(this sample)

  
Delivery method
Distributed via e-mail attachment

Comments