MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 3073bf1249fa196330c6bdebc7581994de68a424614c824db1facd8520306eb2. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


Threat unknown


Vendor detections: 3


Intelligence 3 IOCs YARA File information Comments
Download sample Add tag Delete this sample Report a False Positive

SHA256 hash: 3073bf1249fa196330c6bdebc7581994de68a424614c824db1facd8520306eb2
SHA3-384 hash: 66891c3ad9f6015ee7028d3277290e466ae11670bdc01e19439bdf687487ab68406c9786751ad99aa7cc9251728fa7f4
SHA1 hash: 18075a76cf995b396bbb530035034f0da6562016
MD5 hash: a0f8c7a6ec880b61b5de06deda82d724
humanhash: coffee-potato-steak-south
File name:3073bf1249fa196330c6bdebc7581994de68a424614c824db1facd8520306eb2
Download: download sample
File size:15'710'279 bytes
First seen:2021-02-03 15:08:42 UTC
Last seen:2022-04-20 10:21:10 UTC
File type: zip
MIME type:application/zip
ssdeep 393216:9ksH2MoQpqOlXyfZRe2wEDXIW06TuS0dxXQF9BQKhyl+IZ+:9kh4PXyf8EDj0VjaF9BSlu
TLSH 5EF63345E7C9E96EE9F3C23147B6821E51415D9AC723D2438952B2BC1CBBAC05F92FC8
Reporter JAMESWT_WT
Tags:android COVID-19 Locker Ransomware

Code Signing Certificate

Organisation:Obfuscapk
Issuer:Obfuscapk
Algorithm:sha256WithRSAEncryption
Valid from:Aug 15 18:58:38 2019 GMT
Valid to:Aug 7 18:58:38 2049 GMT
Serial number: 5F122EB3
Intelligence: 13 malware samples on MalwareBazaar are signed with this code signing certificate
Thumbprint Algorithm:SHA256
Thumbprint: ED1399B288D3AAC9EF9D43FCD9FBF90C7662B3ED0050B08F3C2988D24A8A42C9
Source:This information was brought to you by ReversingLabs A1000 Malware Analysis Platform

Intelligence

File Origin
# of uploads :
12
# of downloads :
711
Origin country :
n/a
Vendor Threat Intelligence
Detection:
n/a
Link:
https://mwdb.cert.pl/sample/3073bf1249fa196330c6bdebc7581994de68a424614c824db1facd8520306eb2/
Threat name:
Android.Trojan.Wacatac
Create hunting rule
Status:
Malicious
First seen:
2021-02-03 15:09:07 UTC
File Type:
Binary (Archive)
Extracted files:
768
AV detection:
11 of 46 (23.91%)
Threat level:
  5/5
Please note that we are no longer able to provide a coverage score for Virus Total.
Threat name:
Malicious File
Score:
0.80
Link:
https://yomi.yoroi.company/submissions/3073bf1249fa196330c6bdebc7581994de68a424614c824db1facd8520306eb2

File information

The table below shows additional information about this malware sample such as delivery method and external references.

Comments