MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 11570b840633975939084c1ac5cf7a49e5ec52c80d91344c05cab10316a44d3a. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


Threat unknown


Vendor detections: 4


Intelligence 4 IOCs YARA File information Comments
Download sample Add tag Delete this sample Report a False Positive

SHA256 hash: 11570b840633975939084c1ac5cf7a49e5ec52c80d91344c05cab10316a44d3a
SHA3-384 hash: 2fe9b13e9e1c5d35eba2a8e51436baa2296b6c7a6c6fd0c373bbfcf0987285de297de7e954ec0e1ff23449e2f1484f62
SHA1 hash: 5b89c85dd16fc0172661ca83bf8a95858c38f055
MD5 hash: 3af743fcc063a92c1e74c06f2092f01a
humanhash: delta-hot-lemon-red
File name:cdk-iam-policy-builder-helper@0.0.194.jsii.tgz
Download: download sample
File size:3'037'392 bytes
First seen:2026-03-31 11:37:15 UTC
Last seen:Never
File type: gz
MIME type:application/gzip
ssdeep 49152:V66u4Sr3c9lrmlm89pIMrjVSGxB9kR3MgwYaFg53sUo55qiRckJ+gBPH:yVr0mhgWSGt83CDFwiIiRcs+SPH
TLSH T187E5332916036FA752A0AAA71BF909C8DC15D3CDB439D984333C2AC5C05F7A25F997F2
Magika gzip
Reporter JAMESWT_WT
Tags:gz jjrawlins-cdk-iam-policy-builder-helper

Intelligence

File Origin
# of uploads :
1
# of downloads :
27
Origin country :
IT IT
Vendor Threat Intelligence
Gathering data
Verdict:
Clean
Score:
89.3%
Link:
https://cyber-fortress.com/docs/result/index.php?id=69cbb1fa6363ca5d27f01f3c
Tags:
n/a
Verdict:
Unknown
Link:
https://www.hybrid-analysis.com/sample/11570b840633975939084c1ac5cf7a49e5ec52c80d91344c05cab10316a44d3a
Verdict:
Unknown
File Type:
gz
Link:
https://opentip.kaspersky.com/11570b840633975939084c1ac5cf7a49e5ec52c80d91344c05cab10316a44d3a/results?tab=lookup
Gathering data
Detection:
n/a
Link:
https://mwdb.cert.pl/sample/11570b840633975939084c1ac5cf7a49e5ec52c80d91344c05cab10316a44d3a/
Verdict:
Susipicious
Link:
https://tip.neiki.dev/file/11570b840633975939084c1ac5cf7a49e5ec52c80d91344c05cab10316a44d3a
Threat name:
Archive-GZIP.Downloader.SupplyChain
Create hunting rule
Status:
Malicious
First seen:
2026-03-31 00:54:26 UTC
File Type:
Binary (Archive)
Extracted files:
4310
AV detection:
6 of 23 (26.09%)
Threat level:
  3/5
Detection(s):
Suspicious file
Link:
https://check.spamhaus.org/check/?searchterm=cflqxbaggolvsoiijqnmlt32jhs6yuwibwititafzkyqgfveju5a._file
Result
Malware family:
n/a
Score:
  3/10
Tags:
execution
Link:
https://tria.ge/reports/260331-n7mhrshy9k/
Behaviour
Command and Scripting Interpreter: JavaScript
Please note that we are no longer able to provide a coverage score for Virus Total.
Threat name:
Legit
Score:
0.00
Link:
https://yomi.yoroi.company/submissions/11570b840633975939084c1ac5cf7a49e5ec52c80d91344c05cab10316a44d3a

File information

The table below shows additional information about this malware sample such as delivery method and external references.

Comments