MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 3adb46318e8d47f5137857d2a9d8cd99a3c12e1b3225ed854bedc2dff8556b8e. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


Matiex


Vendor detections: 3


Intelligence 3 IOCs YARA File information Comments
Download sample Add tag Delete this sample Report a False Positive

SHA256 hash: 3adb46318e8d47f5137857d2a9d8cd99a3c12e1b3225ed854bedc2dff8556b8e
SHA3-384 hash: 490ae58777f2a05433681654a54389c32e82775a98dfbc47e6d0b40e6becdacca8ca88b380cbef36293dbc9c3a462e1c
SHA1 hash: 358df6f202059eadad2594f1873017bb2a926de2
MD5 hash: 2abec0bdcc472e62d49a8d56feb0045e
humanhash: coffee-snake-cola-whiskey
File name:6791525BED3B4762909FCE8DA4E806D6.0.0.PDF.rar
Download: download sample
Signature Matiex
Create hunting rule
File size:243'730 bytes
First seen:2020-10-22 11:50:23 UTC
Last seen:Never
File type: zip
MIME type:application/zip
ssdeep 6144:E6rYUh0Ndzeo+/NIGOZoE3lmRyeLmnpns4FgUpWxIA/v9:FrD0NdzeosNBO2e4/ctDFgGAX9
TLSH F4342318C2DEE3FC1EA82907A54BE9D7B46C025EBCE2B8F39116D545EED83E0134915E
Reporter abuse_ch
Tags:Matiex rar


Avatar
abuse_ch
Malspam distributing unidentified malware:

HELO: mailhost44.atlas.net.tr
Sending IP: 212.64.200.44
From: bilgi-kurtkoy@fenbilimleri.com
Subject: DEKONT/22/10/2020
Attachment: 6791525BED3B4762909FCE8DA4E806D6.0.0.PDF.rar (contains "6791525BED3B4762909FCE8DA4E806D6.0.0.PDF.exe")

Intelligence

File Origin
# of uploads :
1
# of downloads :
86
Origin country :
n/a
Vendor Threat Intelligence
Detection(s):
Sanesecurity.Malware.25510.ZipHeur.Ext.UNOFFICIAL
Create hunting rule

Detection:
n/a
Link:
https://mwdb.cert.pl/sample/3adb46318e8d47f5137857d2a9d8cd99a3c12e1b3225ed854bedc2dff8556b8e/
Threat name:
Win32.Trojan.CryptInject
Create hunting rule
Status:
Malicious
First seen:
2020-10-22 07:57:19 UTC
AV detection:
11 of 48 (22.92%)
Threat level:
  5/5
Detection(s):
Suspicious file
Link:
https://check.spamhaus.org/check/?searchterm=hlnummmorvd7ke3yk7jktwgntgr4clq3gis63bkl5xbn76cvnoha._file
Please note that we are no longer able to provide a coverage score for Virus Total.

File information

The table below shows additional information about this malware sample such as delivery method and external references.

Malspam

Matiex

zip 3adb46318e8d47f5137857d2a9d8cd99a3c12e1b3225ed854bedc2dff8556b8e

(this sample)

Matiex

Executable exe 3617f1bf2ebcce123605dccd72dfbfc05f143d2698e159dc869e34ba38c91948

  
Dropping
MD5 2ab3ff74d919061f308ceebbae4f1a9a
  
Delivery method
Distributed via e-mail attachment
  
Dropping
SHA256 3617f1bf2ebcce123605dccd72dfbfc05f143d2698e159dc869e34ba38c91948

Comments