MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 06f732bbfa9da4b56edfa7f2c0fd597a327068d038ff9c1a8dbb35b9595a159a. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


Matiex


Vendor detections: 3


Intelligence 3 IOCs YARA File information Comments
Download sample Add tag Delete this sample Report a False Positive

SHA256 hash: 06f732bbfa9da4b56edfa7f2c0fd597a327068d038ff9c1a8dbb35b9595a159a
SHA3-384 hash: 9b3bab5ded53eb7a2b88a5c4c520dce5e4e6e73fcb31f2bd9a7ac02031afb73ef54690205ab283840356fbd21239486c
SHA1 hash: ff4da151e0db57f35007d8d8125ae41c714b4a9b
MD5 hash: e7bcc98fcf1c1ed396afe6903c1f51b7
humanhash: autumn-wyoming-robin-early
File name:Purchase Order32002068.7z
Download: download sample
Signature Matiex
Create hunting rule
File size:637'718 bytes
First seen:2020-11-07 15:01:55 UTC
Last seen:Never
File type: 7z
MIME type:application/x-rar
ssdeep 12288:e3slo9KLUmsViavD3BFC1EhjvCX+nmRyW6tzcF9AZK14ObelMDJn9bQ:e3s2dbL3B81EGXLAr0GObelGG
TLSH 6CD4239783C68537E86F5ECEA8254F7666626867E0738E24810E37588CD2C1E7C6CC77
Reporter abuse_ch
Tags:7z GoDaddy Matiex


Avatar
abuse_ch
Malspam distributing Matiex:

HELO: p3plwbeout24-02.prod.phx3.secureserver.net
Sending IP: 68.178.252.184
From: Charlie Davis <cdavis@chiaviation.com>
Subject: November Purchase Order Ref No 503200
Attachment: Purchase Order32002068.7z (contains "Purchase Order32002068.exe")

Intelligence

File Origin
# of uploads :
1
# of downloads :
85
Origin country :
n/a
Vendor Threat Intelligence
Detection:
n/a
Link:
https://mwdb.cert.pl/sample/06f732bbfa9da4b56edfa7f2c0fd597a327068d038ff9c1a8dbb35b9595a159a/
Threat name:
Win32.Trojan.Matiex
Create hunting rule
Status:
Malicious
First seen:
2020-11-07 12:23:19 UTC
AV detection:
23 of 48 (47.92%)
Threat level:
  5/5
Detection(s):
Suspicious file
Link:
https://check.spamhaus.org/check/?searchterm=a33tfo72twslk3w7u7zmb7kzpizha2gqhd7zygunxm23swk2cwna._file
Please note that we are no longer able to provide a coverage score for Virus Total.

File information

The table below shows additional information about this malware sample such as delivery method and external references.

Malspam

Matiex

7z 06f732bbfa9da4b56edfa7f2c0fd597a327068d038ff9c1a8dbb35b9595a159a

(this sample)

Matiex

Executable exe 4958190c440f4383001c67888d7e0f0f2ea6ab4976cfd0b2d0a165cf459a5b45

  
Dropping
MD5 c989665a3e4ddd091a99de841c1b04e0
  
Dropping
Matiex
  
Delivery method
Distributed via e-mail attachment
  
Dropping
SHA256 4958190c440f4383001c67888d7e0f0f2ea6ab4976cfd0b2d0a165cf459a5b45

Comments