MalwareBazaar Database
You are currently viewing the MalwareBazaar entry for SHA256 047af98cc094d097fac765d062ecc31108bf8dd3d354cae228af27ded9844f47. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.
Database Entry
QuasarRAT
Vendor detections: 3
| SHA256 hash: | 047af98cc094d097fac765d062ecc31108bf8dd3d354cae228af27ded9844f47 |
|---|---|
| SHA3-384 hash: | 0530fa9a2dcf8d0d8d56883d7715cbf62275051acb3f4214b4219e8e2377a435f6a715f5ea833afdd2718c21814a8fc8 |
| SHA1 hash: | 9b6d461c4ed33b0d67ba7dfa786c64bdfa06eada |
| MD5 hash: | 602f65ff29a0f408c3b7ffa4d7324d17 |
| humanhash: | blue-steak-fish-comet |
| File name: | Swift copy.gz |
| Download: | download sample |
| Signature | QuasarRAT |
| File size: | 374'062 bytes |
| First seen: | 2020-06-03 04:40:28 UTC |
| Last seen: | Never |
| File type: | gz |
| MIME type: | application/x-rar |
| ssdeep | 6144:+XLHMBVhS3JYaNznbl5l4S0+u1dRs/kUWmoFywC9ERHxG9GGF0yueip7D:YsPhqJYsTbl4b1d4joFywdm5iFD |
| TLSH | 198423908C2AD30747DF057A277D6E2B6F5E1B82991B16F2DB00FB316EA921D13ED061 |
| Reporter |  jarumlus |
| Tags: | QuasarRAT |
Intelligence
File Origin
# of uploads :
1
# of downloads :
325
Origin country :
n/a
Vendor Threat Intelligence
Gathering data
Threat name:
ByteCode-MSIL.Trojan.Genkryptik
Status:
Malicious
First seen:
2020-06-03 07:41:22 UTC
File Type:
Binary (Archive)
Extracted files:
32
AV detection:
16 of 31 (51.61%)
Threat level:
2/5
Detection(s):
Suspicious file
Please note that we are no longer able to provide a coverage score for Virus Total.
File information
The table below shows additional information about this malware sample such as delivery method and external references.
Malspam
exe Delivery method
Distributed via e-mail attachment
Comments
Login required
You need to login to in order to write a comment. Login with your abuse.ch account.