MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 61c7eb8c33d7eb01285c503fa72d249f470fe3606ff10e459cfdc2f9e3d59b35. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry

Intelligence File information 2 Yara 1 Comments

SHA256 hash: 61c7eb8c33d7eb01285c503fa72d249f470fe3606ff10e459cfdc2f9e3d59b35
SHA3-384 hash: 505aecd299b98defc01b2c172c1001ce8b98f7bcf271eb15d52d00a5d9085bc7cb258f7e5e6f06e619ae70d07753efcd
SHA1 hash: 688752c9a25d28e3533cc98b37d98bc688614207
MD5 hash: 205b4d4b93e744d9ae520b62e98c7619
humanhash: south-colorado-california-seven
Download: download sample
Signature n/a
File size:40'448 bytes
First seen:2020-07-01 02:05:23 UTC
Last seen:Never
File type:Word file docx
MIME type:application/msword
ssdeep 384:+yOvoYZXwJGzJ5YmtiSwvxjk+t55Gi5wtxqZ2hrkr40j1:+yOvoYZgIJ5jAxw+tLGyErk0k
TLSH 0803F640B3D1CD2BF26645314EDBE6DBB37ABC59AE05C29B32483B0EBCB12718A15345
Reporter @SecuriteInfoCom


Mail intelligence No data
# of uploads 1
# of downloads 22
Origin country FR FR
CERT.PL MWDB Detection:n/a
ReversingLabs :Status:Malicious
Threat name:Document-Word.Downloader.Sload
First seen:2020-07-01 00:12:54 UTC
AV detection:12 of 31 (38.71%)
Threat level:   2/5
Hatching Triage Score:   10/10
Malware Family:n/a
VirusTotal:Virustotal results 24.19%

Yara Signatures

Rule name:SharedStrings
Author:Katie Kleemola
Description:Internal names found in LURK0/CCTV0 samples

File information

The table below shows additional information about this malware sample such as delivery method and external references.

Web download

Word file docx 61c7eb8c33d7eb01285c503fa72d249f470fe3606ff10e459cfdc2f9e3d59b35

(this sample)

Delivery method
Distributed via web download