MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 58feb0e5a795cf5f8ab9f7478b4f26ce936be728e4fa89fa3408f05049d90f2a. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry

Intelligence File information 4 Yara Comments

SHA256 hash: 58feb0e5a795cf5f8ab9f7478b4f26ce936be728e4fa89fa3408f05049d90f2a
SHA1 hash: 18e9626cce1bd753de6d3136b9c300aec9ebb210
MD5 hash: 35d1ffad54d3d7129938762b47509b23
File name:frraw7.dll
Download: download sample
Signature n/a
File size:894'976 bytes
First seen:2020-05-23 15:06:54 UTC
Last seen:2020-05-23 15:46:37 UTC
File type:DLL dll
MIME type:application/x-dosexec
imphash fd857936b0e6f6fcd44721bb2ecde4f7
ssdeep 24576:Iq75ZHjca4z3a0v0EKkHDwbjj+VTMI0D:IK5ZHjca4zq0v7HDIuVgv
TLSH E4156C00B7918038F4FB02F58DBE51BD693C7EA14B6484DBA2C4A9DF5A75AE0AD31713
Reporter @abuse_ch
Tags:dll geo USA Valak

Valak payload URL:


Mail intelligence No data
# of uploads 2
# of downloads 22
Origin country CH CH
ClamAV PUA.Win.Downloader.Aiis-6803892-0
VirusTotal:Virustotal results 8.33%
ReversingLabs :No data

File information

The table below shows additional information about this malware sample such as delivery method and external references.

DLL dll 58feb0e5a795cf5f8ab9f7478b4f26ce936be728e4fa89fa3408f05049d90f2a

(this sample)

Delivery method
Distributed via web download