MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 608e1494557773001da1fbed0cf22e3670c9f69e26d2e7bdab8acf81140a20c6. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


Threat unknown


Vendor detections: 3


Intelligence 3 IOCs YARA File information Comments
Download sample Add tag Delete this sample Report a False Positive

SHA256 hash: 608e1494557773001da1fbed0cf22e3670c9f69e26d2e7bdab8acf81140a20c6
SHA3-384 hash: 939fd06b66124327b085edb69303d08b5dff299fa6b5e87a843a096446f6615a4e4e38993c736411243c5ed2c33dfaf0
SHA1 hash: 6a4863e0bff3dbcddbcdad0862cd03e0a30ebfb3
MD5 hash: 956b9a22102bdbd9280895f87a0f6d39
humanhash: enemy-four-magazine-nebraska
File name:608e1494557773001da1fbed0cf22e3670c9f69e26d2e7bdab8acf81140a20c6
Download: download sample
File size:577'681 bytes
First seen:2020-11-07 22:28:14 UTC
Last seen:2020-11-08 00:40:09 UTC
File type:Executable exe
MIME type:application/x-dosexec
imphash 884310b1928934402ea6fec1dbd3cf5e (3'725 x GCleaner, 3'509 x Socks5Systemz, 262 x RaccoonStealer)
ssdeep 12288:uCA+R+NEiBePIpLvnDALWyjXCcvG+MBTlPadSfXioRcpMXVJoT:uCAMsKQprc7jXRJMBTlP0QjcpMXVJoT
Threatray 3 similar samples on MalwareBazaar
TLSH 9CC42207E6B694B6E15087B85E39D9915E3FB6B128306014F2AD6E4CBF77093D01A3B3
Reporter seifreed

Intelligence

File Origin
# of uploads :
2
# of downloads :
123
Origin country :
n/a
Vendor Threat Intelligence
Detection(s):
PUA.Win.Adware.Slugin-6803969-0
Create hunting rule

PUA.Win.Adware.Slugin-6840354-0
Create hunting rule

Result
Verdict:
Malware
Maliciousness:

Behaviour
Creating a file in the %temp% subdirectories
Creating a window
Sending a UDP request
Creating a process from a recently created file
Detection:
n/a
Link:
https://mwdb.cert.pl/sample/608e1494557773001da1fbed0cf22e3670c9f69e26d2e7bdab8acf81140a20c6/
Threat name:
ByteCode-MSIL.Trojan.Perseus
Create hunting rule
Status:
Malicious
First seen:
2020-11-07 22:38:14 UTC
AV detection:
17 of 48 (35.42%)
Threat level:
  5/5
Verdict:
unknown
Similar samples:
066bdbaf5b5526cc3040573bea83da7a384e0c97df13d50a7cc0716b1dd8e6ac
ccaedac7e0d5d4a655d37d59fb12bfb920785e9c8d0b811dc6ab88d3e1ca6ea0
d4898d4aec91b789a3abb2d9e103eb1111d783a05a119ef7d1db9ab3811a79c2
Please note that we are no longer able to provide a coverage score for Virus Total.

File information

The table below shows additional information about this malware sample such as delivery method and external references.

  
Delivery method
Other

Comments