MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 279f334ec8521dfec80cfc186e709f88c88a030515024c9ef16f7063aec9dbbb. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry

Intelligence File information 4 Yara Comments

SHA256 hash: 279f334ec8521dfec80cfc186e709f88c88a030515024c9ef16f7063aec9dbbb
SHA3-384 hash: f0ed5f626e7b744b7284b034b418681afd6027ea51f571ec44414845b46488a9566f6cf8a02d6d48377ebe6020284caf
SHA1 hash: 53d6e4f4618cde418a522688a1fa67dd2368ee3d
MD5 hash: 6516bedffc29d38b6694c9c4fe5133e0
humanhash: romeo-cold-maine-mike
File name:cgc.bin
Download: download sample
Signature n/a
File size:25'600 bytes
First seen:2020-06-30 13:34:04 UTC
Last seen:Never
File type:Executable exe
MIME type:application/x-dosexec
imphash f281ba855c477c9bd9ae98279c88e8ad
ssdeep 384:Fdzs1zTkL2spjn/QCAuQtU/DcfTrjmQiqEKKrvpMW4LEh+L9:FNMA/QVtU/DIriWFYvkZ
TLSH 13B218CBD6859351F42885F1192BFA75D4BAFC152B3C16E7A7406D6829383C0EC362AF
Reporter @killamjr


Mail intelligence No data
# of uploads 1
# of downloads 37
Origin country US US
CAPE Sandbox Detection:n/a
CERT.PL MWDB Detection:n/a
ReversingLabs :Status:Malicious
Threat name:Win32.Trojan.Small
First seen:2020-06-29 19:37:47 UTC
AV detection:21 of 31 (67.74%)
Threat level:   5/5
Hatching Triage Score:   7/10
Malware Family:n/a
VirusTotal:Virustotal results 33.33%

File information

The table below shows additional information about this malware sample such as delivery method and external references.


Executable exe 279f334ec8521dfec80cfc186e709f88c88a030515024c9ef16f7063aec9dbbb

(this sample)

Dropped by
MD5 440410e640c6722b61171f760c7c6faa
Delivery method
Distributed via web download