MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 31a955d77d7f9a909fd52e2f6c3e715f5e774325d87142ebf2afea247f20bf52. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


Threat unknown


Vendor detections: 4


Intelligence 4 IOCs YARA File information Comments
Download sample Add tag Delete this sample Report a False Positive

SHA256 hash: 31a955d77d7f9a909fd52e2f6c3e715f5e774325d87142ebf2afea247f20bf52
SHA3-384 hash: 75c688c014c32c2b9b6848fe161d77c590be116f1d82dea12c551c439036db3c086967c31e971ebabe5969cb8b7bd25b
SHA1 hash: 79ec16a43b0750a7817ac9c011f5e36354dba459
MD5 hash: a50631c5a31fe6740808edc7979057bb
humanhash: batman-earth-freddie-carolina
File name:火车头兼容win10版.zip
Download: download sample
File size:37'440'889 bytes
First seen:2025-11-25 20:47:55 UTC
Last seen:Never
File type: zip
MIME type:application/zip
ssdeep 786432:TFW1w9xq0tjCBvfYky/qjWXMJ34i6VUAVfUV0Yo/S:BW190tjCtYVCj7J34vUiUeYoa
TLSH T18B8733EAC0774303E72E2D3459B153A72669E822454719BBF87926B208CB9D0577CF8F
Magika zip
Reporter juroots
Tags:zip

Intelligence

File Origin
# of uploads :
1
# of downloads :
38
Origin country :
CH CH
Vendor Threat Intelligence
Verdict:
Clean
Score:
99.9%
Link:
https://cyber-fortress.com/docs/result/index.php?id=6926161c5d7fac83ebf2fd01
Tags:
n/a
Verdict:
Unknown
Link:
https://www.hybrid-analysis.com/sample/31a955d77d7f9a909fd52e2f6c3e715f5e774325d87142ebf2afea247f20bf52
Result
Verdict:
SUSPICIOUS
Link:
https://labs.inquest.net/dfi/sha256/31a955d77d7f9a909fd52e2f6c3e715f5e774325d87142ebf2afea247f20bf52
Details
Document With No Content
Document contains little or no semantic information.
Windows PE Executable
Found a Windows Portable Executable (PE) binary. Depending on context, the presence of a binary is suspicious or malicious.
Verdict:
Unknown
File Type:
zip
First seen:
2025-11-26T04:22:00Z UTC
Last seen:
2025-11-26T04:35:00Z UTC
Hits:
~10
Link:
https://opentip.kaspersky.com/31a955d77d7f9a909fd52e2f6c3e715f5e774325d87142ebf2afea247f20bf52/results?tab=lookup
Score:
96%
Verdict:
Malware
File Type:
ARCHIVE
Link:
https://malprob.io/report/31a955d77d7f9a909fd52e2f6c3e715f5e774325d87142ebf2afea247f20bf52
Gathering data
Detection(s):
Suspicious file
Link:
https://check.spamhaus.org/check/?searchterm=gguvlv35p6njbh6vfyxwyptrl5phoqzf3byuf27sv7vci7zax5ja._file
Please note that we are no longer able to provide a coverage score for Virus Total.
Threat name:
Legit
Score:
0.00
Link:
https://yomi.yoroi.company/submissions/31a955d77d7f9a909fd52e2f6c3e715f5e774325d87142ebf2afea247f20bf52

File information

The table below shows additional information about this malware sample such as delivery method and external references.

Web download

zip 31a955d77d7f9a909fd52e2f6c3e715f5e774325d87142ebf2afea247f20bf52

(this sample)

  
URLhaus
https://urlhaus.abuse.ch/url/3716969/
  
Delivery method
Distributed via web download

Comments