MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 58a74dceb2022cd8a358b92acd1b48a5e01c524c3b0195d7033e4bd55eff4495. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


Threat unknown


Vendor detections: 1


Intelligence 1 IOCs YARA File information Comments
Download sample Add tag Delete this sample Report a False Positive

SHA256 hash: 58a74dceb2022cd8a358b92acd1b48a5e01c524c3b0195d7033e4bd55eff4495
SHA3-384 hash: cd47a2d08911c160e85f54c629d2978759c6b0c997f444060194f79df0ab430c00312ac109b2e437cc1599ef5118bc23
SHA1 hash: 05c0c49e8bcf11b883d41441ce87a2ee7a3aba1d
MD5 hash: 43830326cd5fae66f5508e27cbec39a0
humanhash: east-georgia-nevada-stairway
File name:58a74dceb2022cd8a358b92acd1b48a5e01c524c3b0195d7033e4bd55eff4495
Download: download sample
File size:82'848 bytes
First seen:2021-01-28 19:22:52 UTC
Last seen:Never
File type:Executable exe
MIME type:application/x-dosexec
imphash 85fd19df117fbc21efbcb1d587063e12
ssdeep 768:VlMDBHxIOP8l9EZE1KmKhZZt1T4wvUGhcPUxXZX30ViTpFmBxJsi31so838v0bdf:kjLm0Xd3ce6nP1lpDco8X4NEOaoxTJ
TLSH 41835A87829110AED8AAD5B5C354DA33FFB5B1496722A7EF03A0C4125F533E0DF78615
Reporter JAMESWT_WT
Tags:ZINC ZINC attacks against security researchers

Code Signing Certificate

Organisation:Symantec Time Stamping Services CA - G2
Issuer:Thawte Timestamping CA
Algorithm:sha1WithRSAEncryption
Valid from:Dec 21 00:00:00 2012 GMT
Valid to:Dec 30 23:59:59 2020 GMT
Serial number: 7E93EBFB7CC64E59EA4B9A77D406FC3B
Intelligence: 85 malware samples on MalwareBazaar are signed with this code signing certificate
Thumbprint Algorithm:SHA256
Thumbprint: 0625FEE1A80D7B897A9712249C2F55FF391D6661DBD8B87F9BE6F252D88CED95
Source:This information was brought to you by ReversingLabs A1000 Malware Analysis Platform

Intelligence

File Origin
# of uploads :
1
# of downloads :
173
Origin country :
n/a
Vendor Threat Intelligence
Malware family:
n/a
ID:
1
File name:
58a74dceb2022cd8a358b92acd1b48a5e01c524c3b0195d7033e4bd55eff4495
Verdict:
No threats detected
Analysis date:
2021-01-28 19:26:16 UTC
Tags:
n/a
Link:
https://app.any.run/tasks/ce73c5ce-2e9b-4377-a1ac-206f1e980496

Note:
ANY.RUN is an interactive sandbox that analyzes all user actions rather than an uploaded sample
Detection:
n/a
Link:
https://www.capesandbox.com/analysis/114286/
Result
Verdict:
Clean
Maliciousness:
Result
Threat name:
Unknown
Detection:
unknown
Classification:
n/a
Score:
1 / 100
Link:
https://www.joesandbox.com/analysis/593301
Behaviour
Behavior Graph:
Download SVG
Detection:
n/a
Link:
https://mwdb.cert.pl/sample/58a74dceb2022cd8a358b92acd1b48a5e01c524c3b0195d7033e4bd55eff4495/
Verdict:
unknown
Result
Malware family:
n/a
Score:
  1/10
Tags:
n/a
Link:
https://tria.ge/reports/210128-gp2jpnljbn/
Unpacked files
SH256 hash:
58a74dceb2022cd8a358b92acd1b48a5e01c524c3b0195d7033e4bd55eff4495
MD5 hash:
43830326cd5fae66f5508e27cbec39a0
SHA1 hash:
05c0c49e8bcf11b883d41441ce87a2ee7a3aba1d
Link:
https://www.unpac.me/results/85bf7761-71c9-499c-be24-fb6b5d3fa85c/
Please note that we are no longer able to provide a coverage score for Virus Total.
Threat name:
Legit
Score:
0.00
Link:
https://yomi.yoroi.company/submissions/58a74dceb2022cd8a358b92acd1b48a5e01c524c3b0195d7033e4bd55eff4495

File information

The table below shows additional information about this malware sample such as delivery method and external references.

Cape
Cape
https://www.capesandbox.com/analysis/114286/

Comments