MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 346fdff8d24cbb7ebd56f60933beca37a4437b5e1eb6e64f7ab21d48c862b5b7. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


Threat unknown


Vendor detections: 3


Intelligence 3 IOCs YARA File information Comments
Download sample Add tag Delete this sample Report a False Positive

SHA256 hash: 346fdff8d24cbb7ebd56f60933beca37a4437b5e1eb6e64f7ab21d48c862b5b7
SHA3-384 hash: 4ae4a9585a699512f093e4a031e993e8a1ad2a812147ddb1cc85ecbb46feb3dbdbd793b64020bfa198c1c48796dafb11
SHA1 hash: bf38aca2c659f9eb2b2fa2fad82ccf55b496b0cb
MD5 hash: d3f44bfe42b2e3c735e9df5bb793b9ef
humanhash: coffee-indigo-seventeen-double
File name:346fdff8d24cbb7ebd56f60933beca37a4437b5e1eb6e64f7ab21d48c862b5b7
Download: download sample
File size:59'904 bytes
First seen:2020-06-01 14:29:49 UTC
Last seen:Never
File type:Executable exe
MIME type:application/x-dosexec
imphash 7665bcb93a6a9bef0f1ee054e123a1fa
ssdeep 768:1nJz+RAP+ptC7j/zz6GGGqoBEr3e8aDPIz87qXQnasy6T6JnymVqmp9WAzs2:zaI0ty2XGh0a7TqXkNOymf
Threatray 36 similar samples on MalwareBazaar
TLSH B4430A124D56C53AC1E272B5A266A1F5CE398D5003F1B2DB07C025BDBE21EE8E5F4F62
Reporter Anonymous
Tags:NetWalker


Avatar
Anonymous
Zero2Automated Course

Intelligence

File Origin
# of uploads :
1
# of downloads :
2'020
Origin country :
n/a
Vendor Threat Intelligence
Gathering data
Threat name:
Win32.Trojan.Netwalker
Create hunting rule
Status:
Malicious
First seen:
2019-11-30 20:56:30 UTC
File Type:
PE (Exe)
AV detection:
25 of 48 (52.08%)
Threat level:
  5/5
Verdict:
unknown
Similar samples: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 26 additional samples on MalwareBazaar
Result
Malware family:
netwalker
Create hunting rule
Score:
  10/10
Tags:
family:netwalker
Link:
https://tria.ge/reports/201109-pna8tf1lde/
Please note that we are no longer able to provide a coverage score for Virus Total.

File information

The table below shows additional information about this malware sample such as delivery method and external references.

Comments