MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 24a6c19ce12087f82b0253f92422231801022728d2b909d2fb561bdeb62806db. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


Intelligence File information Yara Comments

SHA256 hash: 24a6c19ce12087f82b0253f92422231801022728d2b909d2fb561bdeb62806db
SHA3-384 hash: a0789c43346e954b5e18f346800c2791ade2591b1e1d2ecc8756aadff824699c24f16dafe200818004f474a31c356f5a
SHA1 hash: 39b43ab5879e192ceb55b43e096102c024d0dfbf
MD5 hash: 6fb3388f5895cc7bb376cc924f80abc4
humanhash: idaho-sad-romeo-comet
File name:zeus 2_2.0.7.4.vir
Download: download sample
Signature ZeuS
File size:166'400 bytes
First seen:2020-07-19 19:23:00 UTC
Last seen:Never
File type:Executable exe
MIME type:application/x-dosexec
imphash e58ab46f2a279ded0846d81bf0fa21f7
ssdeep 3072:qTnlUkTO58VQaBGagNnMAWtajY6R5/kZnn3u1ETWt7Loi9sgN5Ztde:snlUoOuVQScnMDAQALCgvde
TLSH 41F3F12E52B1711DFB98C2748CF0D27A52817D61E779C3E39316CF949E5148B1F4EAA0
Reporter @tildedennis
Tags:zeus 2


Twitter
@tildedennis
zeus 2 version 2.0.7.4

Intelligence


File Origin
# of uploads :
1
# of downloads :
18
Origin country :
US US
Mail intelligence
No data
Vendor Threat Intelligence
Result
Verdict:
Malware
Maliciousness:

Behaviour
Creating a window
Unauthorized injection to a recently created process
Connection attempt to an infection source
Result
Threat name:
Unknown
Detection:
malicious
Classification:
n/a
Score:
60 / 100
Behaviour
Behavior Graph:
Threat name:
Win32.Trojan.Zbot
Status:
Malicious
First seen:
2011-05-26 12:08:00 UTC
AV detection:
26 of 28 (92.86%)
Threat level
  5/5
Result
Malware family:
n/a
Score:
  8/10
Tags:
upx
Behaviour
UPX packed file
Threat name:
Unknown
Score:
1.00

File information


The table below shows additional information about this malware sample such as delivery method and external references.

Comments