MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 024cd5104ebed3fb749352f9adc9aaf5a31d6fa83dbfcaf2ec827208a67b5d16. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry

Threat unknown

Vendor detections: 7

Intelligence 7 IOCs YARA File information Comments

SHA256 hash:	024cd5104ebed3fb749352f9adc9aaf5a31d6fa83dbfcaf2ec827208a67b5d16
SHA3-384 hash:	bf551db9215e0c572e28dddf6c6df92941596abb21946da3d00f38e5e78ac9c469fb7abe774af4920e6556c678fc3d3a
SHA1 hash:	4002299d1e3ce877db0a540318cbfec1e7357846
MD5 hash:	38a2c0dc18eee997d266e64974025c8d
humanhash:	georgia-lemon-seventeen-mango
File name:	ofsymyb.js
Download:	download sample
File size:	405 bytes
First seen:	2026-03-01 09:23:48 UTC
Last seen:	Never
File type:	js
MIME type:	text/plain
ssdeep	12:qRHNkuqrw6s+2M87UxMbedO89ojALqWNHF8E4:qrkRjD2dgWkOpp
TLSH	T186E0F12478C8D0CC650123CA6288C709A4E340D43F04F4B25B49C3DCF64323103984FF
Magika	javascript
Reporter	JAMESWT_WT
Tags:	85-11-167-119 js WsgiDAV

Intelligence

File Origin

# of uploads :

# of downloads :

112

Origin country :

Vendor Threat Intelligence

No detections

Detection(s):

SecuriteInfo.com.PUA.IA.Suspicious.95336858.UNOFFICIAL

Verdict:

Clean

Score:

99.9%

Link:

https://cyber-fortress.com/docs/result/index.php?id=69a405c08fffa866e3b3a64d

Tags:

n/a

Verdict:

Suspicious

Threat level:

5/10

Confidence:

100%

Tags:

repaired webdav

Link:

https://www.filescan.io/uploads/69a405be10e80629d4f73492/reports/128b9963-48dd-4d03-a498-f62f25b10e65/overview

Verdict:

Suspicious

Labled as:

TrojanDownloader/JS.Agent

Link:

https://www.hybrid-analysis.com/sample/024cd5104ebed3fb749352f9adc9aaf5a31d6fa83dbfcaf2ec827208a67b5d16

Verdict:

Malicious

File Type:

Detections:

HEUR:Trojan-Downloader.Script.Generic

Link:

https://opentip.kaspersky.com/024cd5104ebed3fb749352f9adc9aaf5a31d6fa83dbfcaf2ec827208a67b5d16/results?tab=lookup

Score:

69%

Verdict:

Susipicious

File Type:

SCRIPT

Link:

https://malprob.io/report/024cd5104ebed3fb749352f9adc9aaf5a31d6fa83dbfcaf2ec827208a67b5d16

Gathering data

Detection:

n/a

Link:

https://mwdb.cert.pl/sample/024cd5104ebed3fb749352f9adc9aaf5a31d6fa83dbfcaf2ec827208a67b5d16/

Verdict:

Susipicious

Link:

https://tip.neiki.dev/file/024cd5104ebed3fb749352f9adc9aaf5a31d6fa83dbfcaf2ec827208a67b5d16

Detection(s):

Suspicious file

Link:

https://check.spamhaus.org/check/?searchterm=ajgnkecox3j7w5etkl423snk6wrr235ihw74v4xmqjzarjt3lula._file

Result

Malware family:

n/a

Score:

3/10

Tags:

execution

Link:

https://tria.ge/reports/260301-lc5prahw4f/

Behaviour

Command and Scripting Interpreter: JavaScript

Please note that we are no longer able to provide a coverage score for Virus Total.

Threat name:

Legit

Score:

0.00

Link:

https://yomi.yoroi.company/submissions/024cd5104ebed3fb749352f9adc9aaf5a31d6fa83dbfcaf2ec827208a67b5d16

File information

The table below shows additional information about this malware sample such as delivery method and external references.

No further information available

Comments

Login required

You need to login to in order to write a comment. Login with your abuse.ch account.

No comments found for this malware sample