MalwareBazaar Database
You are currently viewing the MalwareBazaar entry for SHA256 60317f2444ff91f8b93604790c19ecc9c497a385fa86ba1de1d41b9a790f8aec. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.
Database Entry
AgentTesla
Vendor detections: 2
| SHA256 hash: | 60317f2444ff91f8b93604790c19ecc9c497a385fa86ba1de1d41b9a790f8aec |
|---|---|
| SHA3-384 hash: | 92b32c33318304f4798b66a4f83fcec732aa1441fdb5369a54c4d18c0eebc6572721ee779869cc5f6d0754773e5e43eb |
| SHA1 hash: | 63e081db6023a7f3244aac58589cd05003b81a35 |
| MD5 hash: | 045e2aa179a912a6efb88860d386e363 |
| humanhash: | table-seven-pennsylvania-one |
| File name: | MV Ksl Xinyang.rar |
| Download: | download sample |
| Signature | AgentTesla |
| File size: | 458'581 bytes |
| First seen: | 2020-05-27 04:13:19 UTC |
| Last seen: | Never |
| File type: | rar |
| MIME type: | application/x-rar |
| ssdeep | 12288:IvgVJeJCE/BHq52AFoH7AcgBeN8dFzC7OsxCK:WWJe4EJw3FG7As8bC7V |
| TLSH | BCA423F12BC07D953AC1DEEA3D3B3A36952BA1106B1049638B98642FCCD38C7E5CD656 |
| Reporter |  jarumlus |
Intelligence
File Origin
# of uploads :
1
# of downloads :
64
Origin country :
n/a
Vendor Threat Intelligence
Gathering data
Threat name:
ByteCode-MSIL.Trojan.Kryptik
Status:
Malicious
First seen:
2020-05-27 04:35:25 UTC
File Type:
Binary (Archive)
Extracted files:
21
AV detection:
17 of 48 (35.42%)
Threat level:
2/5
Please note that we are no longer able to provide a coverage score for Virus Total.
File information
The table below shows additional information about this malware sample such as delivery method and external references.
Malspam
exe Delivery method
Distributed via e-mail attachment
Comments
Login required
You need to login to in order to write a comment. Login with your abuse.ch account.