MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 5ef0b6ab46bb6853ddf281a6b12ca1b6c9d77a6b25a8db00e5f0771e793357a5. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


Threat unknown


Vendor detections: 3


Intelligence 3 IOCs YARA File information Comments
Download sample Add tag Delete this sample Report a False Positive

SHA256 hash: 5ef0b6ab46bb6853ddf281a6b12ca1b6c9d77a6b25a8db00e5f0771e793357a5
SHA3-384 hash: 32142e0f05a5ecdaa3207c02f90cb67b7f8b3836b0a222616f19ab84805dc88f7535c70f670897370d9db747c6529aaf
SHA1 hash: 4345e8cb2d4607547fcbd7d4c84abd5b1ba5ce91
MD5 hash: 26725fa739de06bd63ec275400696c15
humanhash: lake-mango-happy-shade
File name:5ef0b6ab46bb6853ddf281a6b12ca1b6c9d77a6b25a8db00e5f0771e793357a5
Download: download sample
File size:65'536 bytes
First seen:2020-06-03 09:24:17 UTC
Last seen:Never
File type:Executable exe
MIME type:application/x-dosexec
imphash 29d2c506e1f87f2a622818f7b1221fb7
ssdeep 768:2Eglsiqo+SA9leSoflogfaImz4YvXpSDYEnb+z7bsqLsJubMNqn3j+dDfpCu6xsB:Ta1lniImMIMKlTMM3j+1fx6xskO5
TLSH 5B534A43B2C199B2C6860A7107A275F3D75B837B87158EC7F3482842AF699E24DB14FD
Reporter raashidbhatt
Tags:exe

Intelligence

File Origin
# of uploads :
1
# of downloads :
61
Origin country :
n/a
Vendor Threat Intelligence
Detection(s):
PUA.Win.Packer.Purebasic-2
Create hunting rule

Gathering data
Threat name:
Win32.Worm.Ramnit
Create hunting rule
Status:
Suspicious
First seen:
2019-07-06 01:25:00 UTC
AV detection:
14 of 30 (46.67%)
Threat level:
  5/5
Verdict:
malicious
Result
Malware family:
n/a
Score:
  1/10
Tags:
n/a
Link:
https://tria.ge/reports/201109-g9c8fa3p7a/
Behaviour
Suspicious use of WriteProcessMemory
Please note that we are no longer able to provide a coverage score for Virus Total.

File information

The table below shows additional information about this malware sample such as delivery method and external references.

Comments