MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 4e09c7b070043bd5bf50b7b2038dd170b491128eb28f5fdf61d9a07e831ece3c. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


Threat unknown


Vendor detections: 5


Intelligence 5 IOCs YARA File information Comments
Download sample Add tag Delete this sample Report a False Positive

SHA256 hash: 4e09c7b070043bd5bf50b7b2038dd170b491128eb28f5fdf61d9a07e831ece3c
SHA3-384 hash: 46f2ea29becc08a2f513e005a2d7d909a14e3f2c56aa752e2779b666213780b9d2ec7c9412afcaa2fbb594817a75aca1
SHA1 hash: 450e76995d4447e80fbce8693f60b79cbfbfe806
MD5 hash: d3dc726f051359d67a6c637d2417260a
humanhash: oxygen-sierra-alpha-arkansas
File name:EILI Laptop Stand & Laptop Stand with hubs 2023.pptx
Download: download sample
File size:7'877'174 bytes
First seen:2023-04-11 06:33:16 UTC
Last seen:Never
File type:PowerPoint file pptx
MIME type:application/vnd.openxmlformats-officedocument.presentationml.presentation
ssdeep 196608:Qp7cLRD07oXk7XQqZ0SyoNdumLPZ443pjXSJdIQz:ZFKLZ0wNHLPZKnpz
TLSH T1ED86F2514A78BBA2ED12093467A12EAF219D2D2F07E732CC585DCE4F3263C9E359F845
TrID 84.3% (.PPTX) PowerPoint Microsoft Office Open XML Format document (121500/1/17)
12.1% (.ZIP) Open Packaging Conventions container (17500/1/4)
2.7% (.ZIP) ZIP compressed archive (4000/1)
0.6% (.PG/BIN) PrintFox/Pagefox bitmap (640x800) (1000/1)
Reporter cocaman
Tags:pptx


Avatar
cocaman
Malicious email (T1566.001)
From: "<kamng@eilihk.com>" (likely spoofed)
Received: "from wpb11-da-01-84.website-solution.net (wpb11-da-01-84.website-solution.net [180.92.180.84]) "
Date: "Tue, 11 Apr 2023 11:26:48 +0800"
Subject: "EILI Laptop Stand and Laptop Stand with hubs"
Attachment: "EILI Laptop Stand & Laptop Stand with hubs 2023.pptx"

Intelligence

File Origin
# of uploads :
1
# of downloads :
24'727
Origin country :
CH CH
Vendor Threat Intelligence
Malware family:
n/a
ID:
1
File name:
EILI Laptop Stand & Laptop Stand with hubs 2023.pptx
Verdict:
No threats detected
Analysis date:
2023-04-11 06:36:19 UTC
Tags:
n/a
Link:
https://app.any.run/tasks/5f665137-727f-46d3-8206-4d505b740f8d

Note:
ANY.RUN is an interactive sandbox that analyzes all user actions rather than an uploaded sample
Result
Verdict:
Clean
File Type:
OOXML Power Point File
Link:
https://app.docguard.net/4e09c7b070043bd5bf50b7b2038dd170b491128eb28f5fdf61d9a07e831ece3c/results/dashboard
Document image
Image:
Download PNG
Document image
Verdict:
No Threat
Threat level:
  2/10
Confidence:
100%
Link:
https://www.filescan.io/uploads/6434ff5bf17a8f86fc8c96a3/reports/d5da8246-726c-44e4-b581-ee52caa1166a/overview
Verdict:
Unknown
Link:
https://www.hybrid-analysis.com/sample/4e09c7b070043bd5bf50b7b2038dd170b491128eb28f5fdf61d9a07e831ece3c
Label:
Malicious
Suspicious Score:
7.4/10
Score Malicious:
74%
Score Benign:
26%
Link:
https://www.malware.ai/gui/files/?id=8618a359-2929-4f19-b290-fb3654a0e20d
Result
Verdict:
MALICIOUS
Link:
https://labs.inquest.net/dfi/sha256/4e09c7b070043bd5bf50b7b2038dd170b491128eb28f5fdf61d9a07e831ece3c
Detection:
n/a
Link:
https://mwdb.cert.pl/sample/4e09c7b070043bd5bf50b7b2038dd170b491128eb28f5fdf61d9a07e831ece3c/
Detection(s):
Suspicious file
Link:
https://check.spamhaus.org/check/?searchterm=jye4pmdqaq55lp2qw6zahdoroc2jceuowkhv7x3b3gqh5ay6zy6a._file
Please note that we are no longer able to provide a coverage score for Virus Total.
Threat name:
Legit
Score:
0.20
Link:
https://yomi.yoroi.company/submissions/4e09c7b070043bd5bf50b7b2038dd170b491128eb28f5fdf61d9a07e831ece3c

File information

The table below shows additional information about this malware sample such as delivery method and external references.

Malspam

PowerPoint file pptx 4e09c7b070043bd5bf50b7b2038dd170b491128eb28f5fdf61d9a07e831ece3c

(this sample)

  
Delivery method
Distributed via e-mail attachment

Comments