MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 5e8392d5eff4222045bf8ebe3fbfc8891892777851b26330b35d65387468c741. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


Threat unknown


Vendor detections: 4


Intelligence 4 IOCs YARA File information Comments
Download sample Add tag Delete this sample Report a False Positive

SHA256 hash: 5e8392d5eff4222045bf8ebe3fbfc8891892777851b26330b35d65387468c741
SHA3-384 hash: ac2408e9c43f0b682c195243081c4433757f9623d3d08807441c2f4994703d6ac99edcec0012a233b276969dc1c193f2
SHA1 hash: 2d0c278d19e0f7e9a77cb001aa20f0270bd1584e
MD5 hash: 4157060d521024d06a64c98a85d08018
humanhash: march-asparagus-double-cold
File name:LISTA DE TAREAS DE BINANCE GIVE AWAYs pdf.iso
Download: download sample
File size:1'245'184 bytes
First seen:2021-01-01 19:08:37 UTC
Last seen:Never
File type: iso
MIME type:application/x-iso9660-image
ssdeep 6144:Gv7nAjjnsKcjwxvHVZ0y1UCgVKndr2/e:JsSx/f0ymCuKdrJ
TLSH 4F45396731D61ECCDCDE8AFE5E196CF25767FDAEC32260A93A09901A06C3141B52E71C
Reporter abuse_ch
Tags:ESP geo iso


Avatar
abuse_ch
Malspam distributing unidentified malware:

HELO: server96.hndservers.net
Sending IP: 51.79.17.195
From: nadeemsagar@amsons.com.pk
Subject: Sorteo de año nuevo de $ 20,000. Premio mayor 2.000 BUSD
Attachment: LISTA DE TAREAS DE BINANCE GIVE AWAYs pdf.iso (contains "LISTA DE TAREAS DE BINANCE GIVE AWAYs pdf.exe")

Intelligence

File Origin
# of uploads :
1
# of downloads :
172
Origin country :
n/a
Vendor Threat Intelligence
Detection(s):
SecuriteInfo.com.Trojan.Inject4.6317.28841.2519.UNOFFICIAL
Create hunting rule

Detection:
n/a
Link:
https://mwdb.cert.pl/sample/5e8392d5eff4222045bf8ebe3fbfc8891892777851b26330b35d65387468c741/
Threat name:
ByteCode-MSIL.Trojan.Cryptos
Create hunting rule
Status:
Malicious
First seen:
2021-01-01 19:09:05 UTC
AV detection:
21 of 47 (44.68%)
Threat level:
  5/5
Detection(s):
Suspicious file
Link:
https://check.spamhaus.org/check/?searchterm=l2bzfvpp6qrcarn7r27d7p6iremje53ykgzggmftlvstq5diy5aq._file
Please note that we are no longer able to provide a coverage score for Virus Total.
Threat name:
Malicious File
Score:
1.00
Link:
https://yomi.yoroi.company/submissions/5e8392d5eff4222045bf8ebe3fbfc8891892777851b26330b35d65387468c741

File information

The table below shows additional information about this malware sample such as delivery method and external references.

Malspam

iso 5e8392d5eff4222045bf8ebe3fbfc8891892777851b26330b35d65387468c741

(this sample)

Executable exe ebffa68dd4bfdeeb36c1d299a4e7e76a85ffd58dbbf872b884a789a471f23fb0

  
Dropping
MD5 7faf99ca87954bd1258122b30306581b
  
Delivery method
Distributed via e-mail attachment
  
Dropping
SHA256 ebffa68dd4bfdeeb36c1d299a4e7e76a85ffd58dbbf872b884a789a471f23fb0

Comments