MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 0570155b3f5194e7d9cf9e9ed1e2dfd00d45488b1434e0b64212d5274f2790df. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


Threat unknown


Vendor detections: 9


Intelligence 9 IOCs YARA File information Comments
Download sample Add tag Delete this sample Report a False Positive

SHA256 hash: 0570155b3f5194e7d9cf9e9ed1e2dfd00d45488b1434e0b64212d5274f2790df
SHA3-384 hash: 74c0502b2c373da0134e0e14d3f04fb5b7ff9b4a8474f4df828d8faab1112d2dfbb5e4645a36893c1788f5c9b20f962c
SHA1 hash: 18d4369ca03e8198e83ddeb060bbd042618ccdb5
MD5 hash: 380c2d86ee9f00ce0a769447aabc5294
humanhash: chicken-colorado-yellow-maryland
File name:xy_büntetőügy_iratai.hta
Download: download sample
File size:1'880 bytes
First seen:2026-03-31 08:17:27 UTC
Last seen:Never
File type:HTML Application (hta) hta
MIME type:text/html
ssdeep 24:hYhkezYpFgLfPq0dV0uQ3sK2i9m8UHYLH2m8U9xvm8U9CeYjaQBrllz:ID+aqsKV//y/4/WqN
TLSH T16D41C3BDB461859E623E0A77EDF9A504D0880E5BCECC578805D8C59D3FFCB2B7118AA1
Magika html
Reporter smica83
Tags:hta HUN

Intelligence

File Origin
# of uploads :
1
# of downloads :
51
Origin country :
HU HU
Vendor Threat Intelligence
Gathering data
Detection(s):
SecuriteInfo.com.Iframe.Gen-12.UNOFFICIAL
Create hunting rule

PUA.Win.Trojan.Iframe-97
Create hunting rule

Verdict:
Clean
Score:
99.9%
Link:
https://cyber-fortress.com/docs/result/index.php?id=69cb83473a18a6e1ddeff8d8
Tags:
n/a
Result
Verdict:
Malicious
File Type:
HTA File - Malicious
Link:
https://app.docguard.net/0570155b3f5194e7d9cf9e9ed1e2dfd00d45488b1434e0b64212d5274f2790df/results/dashboard
Payload URLs
URL
File name
https://1k8v3k3.online/pixel.js
HTA File
Behaviour
BlacklistAPI detected
Verdict:
Likely Malicious
Threat level:
  7.5/10
Confidence:
100%
Tags:
obfuscated soft-404
Link:
https://www.filescan.io/uploads/69cb8347972c219c8d731fc0/reports/14e212fc-ac0f-4219-9be2-8ccdcd82948d/overview
Verdict:
Suspicious
Labled as:
DR/SNH
Link:
https://www.hybrid-analysis.com/sample/0570155b3f5194e7d9cf9e9ed1e2dfd00d45488b1434e0b64212d5274f2790df
Verdict:
Malicious
File Type:
hta
First seen:
2026-03-31T05:42:00Z UTC
Last seen:
2026-04-01T17:51:00Z UTC
Hits:
~100
Detections:
Trojan-Downloader.JS.SLoad.sb HEUR:Trojan-Downloader.HTA.SLoad.gen
Link:
https://opentip.kaspersky.com/0570155b3f5194e7d9cf9e9ed1e2dfd00d45488b1434e0b64212d5274f2790df/results?tab=lookup
Result
Threat name:
n/a
Detection:
clean
Classification:
n/a
Score:
2 / 100
Link:
https://www.joesandbox.com/analysis/1891309
Behaviour
Behavior Graph:
n/a
Score:
1%
Verdict:
Benign
File Type:
SCRIPT
Link:
https://malprob.io/report/0570155b3f5194e7d9cf9e9ed1e2dfd00d45488b1434e0b64212d5274f2790df
Verdict:
inconclusive
YARA:
2 match(es)
Tags:
Html
Link:
https://app.malva.re/file/380c2d86ee9f00ce0a769447aabc5294
Detection:
n/a
Link:
https://mwdb.cert.pl/sample/0570155b3f5194e7d9cf9e9ed1e2dfd00d45488b1434e0b64212d5274f2790df/
Verdict:
Malicious
Threat:
Trojan-Downloader.JS.SLoad
Link:
https://tip.neiki.dev/file/0570155b3f5194e7d9cf9e9ed1e2dfd00d45488b1434e0b64212d5274f2790df
Threat name:
Script.Trojan.Heuristic
Create hunting rule
Status:
Malicious
First seen:
2026-03-31 08:18:31 UTC
File Type:
Text (HTML)
Extracted files:
1
AV detection:
7 of 24 (29.17%)
Threat level:
  2/5
Detection(s):
Suspicious file
Link:
https://check.spamhaus.org/check/?searchterm=avybkwz7kgkopwopt2pndyw72agukselcq2obnscclksotzhsdpq._file
Result
Malware family:
n/a
Score:
  8/10
Tags:
discovery
Link:
https://tria.ge/reports/260331-j7dhmsgv7l/
Behaviour
System Location Discovery: System Language Discovery
Badlisted process makes network request
Please note that we are no longer able to provide a coverage score for Virus Total.
Threat name:
Malicious File
Score:
0.96
Link:
https://yomi.yoroi.company/submissions/0570155b3f5194e7d9cf9e9ed1e2dfd00d45488b1434e0b64212d5274f2790df

File information

The table below shows additional information about this malware sample such as delivery method and external references.

HTML Application (hta) hta 0570155b3f5194e7d9cf9e9ed1e2dfd00d45488b1434e0b64212d5274f2790df

(this sample)

Java Script (JS) js d7ec72f2a254222a970caa80a7d78b6576b54e1c500a69d00b30451ee17575a1

  
Dropping
SHA256 d7ec72f2a254222a970caa80a7d78b6576b54e1c500a69d00b30451ee17575a1
  
Dropping
MD5 5e037b0ed6ffce4133937bece56d52bc

Comments