MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 2267ae0da18ffb2d05046af5a44ef04717515c4584bc97bfc5c43da7b45dfea4. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


ZeuS


Vendor detections: 8


Intelligence 8 IOCs YARA File information Comments
Download sample Add tag Delete this sample Report a False Positive

SHA256 hash: 2267ae0da18ffb2d05046af5a44ef04717515c4584bc97bfc5c43da7b45dfea4
SHA3-384 hash: dbdf461985e051ff64d2500733364032d679288fe72774333ffea53f63819ee68e2768811382f6adbc67f4b4680ae7f8
SHA1 hash: 320855b4703529f24c0dac5caeb3173ea71ec536
MD5 hash: 5a0aeaa95d0e7860eb0cb769e8eb7442
humanhash: california-seventeen-freddie-cola
File name:unnamed 3_3.0.3.2.vir
Download: download sample
Signature ZeuS
Create hunting rule
File size:196'608 bytes
First seen:2020-07-19 19:49:35 UTC
Last seen:Never
File type:Executable exe
MIME type:application/x-dosexec
imphash af2ee2cdfa4256451bdb7ed62258f0e3 (1 x ZeuS)
ssdeep 3072:O3ZTwCVqkBxVSh+0KNK50NL7w4lAV/8Jf4ZDAGE+CYmEneywv4irbvPg2nQ17vE:O3ZTXVqgVyO17LOWhNSTy4irzq7M
Threatray 121 similar samples on MalwareBazaar
TLSH C814E02510D8E993E4B366FE3070528B6235BD7016E09C4FC30466C9296F1F6ABADB73
Reporter tildedennis
Tags:unnamed 3 ZeuS


Avatar
tildedennis
unnamed 3 version 3.0.3.2

Intelligence

File Origin
# of uploads :
1
# of downloads :
1'434
Origin country :
n/a
Vendor Threat Intelligence
Detection:
Zeus
Create hunting rule
Link:
https://www.capesandbox.com/analysis/28404/
Detection(s):
SecuriteInfo.com.Win32.Cryptor.24909.11685.UNOFFICIAL
Create hunting rule

Result
Verdict:
Malware
Maliciousness:

Behaviour
Creating a window
Unauthorized injection to a recently created process
Connection attempt to an infection source
Result
Threat name:
Unknown
Detection:
malicious
Classification:
evad
Score:
80 / 100
Link:
https://www.joesandbox.com/analysis/390641
Behaviour
Behavior Graph:
Download SVG
Detection:
n/a
Link:
https://mwdb.cert.pl/sample/2267ae0da18ffb2d05046af5a44ef04717515c4584bc97bfc5c43da7b45dfea4/
Threat name:
Win32.Trojan.Kryptik
Create hunting rule
Status:
Malicious
First seen:
2012-06-20 16:28:00 UTC
AV detection:
24 of 28 (85.71%)
Threat level:
  5/5
Detection(s):
Malicious file
Link:
https://check.spamhaus.org/check/?searchterm=ejt24dnbr75s2bienl22itxqi4lvcxcfqs6jpp6fyq62pnc572sa._file
Verdict:
malicious
Similar samples:
0d812586b239b0ce1c4f3f9347386c75e70ab098659c019e100160078b821aa5
ZeuS
0d96c8a11fe748d1258fc20378d3e354fd468dd7ba9d07670497024b6fb03406
ZeuS
1f3842bc152088bc10de6e14adabf860902dee318375a6567e0b85a9faaed1f0
ZeuS
24587d6ea3039f30e66126b4e98ced9ca56c3919f1568dbfb464ea6918ea7380
ZeuS
4763270a84a8a6d756eaf4b5d9ed3b6a0e9e254c682f075a5338247dca3403a3
ZeuS
807ff61260f5f531948d4610f7fc407a8b6c92e1d1a5e9846a9304514cd50c44
ZeuS
88303bec606c271a2db6fe1bb0945c7e79835203ff2d9ee629c1d9e3987ccaac
ZeuS
ad902bad9f459a31e657fe826869a611507af41776e323f285809a58e5f1172b
ZeuS
bc8b29f27771d4f8c16ce6e81b180ca85627b7b6217a7ee5560679317c772ce9
ZeuS
d6379c8b85873d5eaa79d5328c2affba69de3a905e94878af6881bd7604ee265
ZeuS
+ 111 additional samples on MalwareBazaar
Result
Malware family:
n/a
Score:
  1/10
Tags:
n/a
Link:
https://tria.ge/reports/200719-sfm5vzc7lx/
Behaviour
Suspicious use of WriteProcessMemory
Suspicious behavior: EnumeratesProcesses
Modifies Internet Explorer settings
Suspicious use of AdjustPrivilegeToken
Suspicious use of SetThreadContext
Adds Run key to start application
Loads dropped DLL
Deletes itself
Executes dropped EXE
Please note that we are no longer able to provide a coverage score for Virus Total.
Threat name:
Unknown
Score:
1.00
Link:
https://yomi.yoroi.company/submissions/2267ae0da18ffb2d05046af5a44ef04717515c4584bc97bfc5c43da7b45dfea4

File information

The table below shows additional information about this malware sample such as delivery method and external references.

  
Link
https://zeusmuseum.com/unnamed 3/
Cape
Cape
https://www.capesandbox.com/analysis/28404/

Comments