MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 6574f1b9d0dc6451993ccf8c0ab2277051c7d1c8c3a2386db261f4eaa4898da0. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


Threat unknown


Vendor detections: 2


Intelligence 2 IOCs YARA File information Comments
Download sample Add tag Delete this sample Report a False Positive

SHA256 hash: 6574f1b9d0dc6451993ccf8c0ab2277051c7d1c8c3a2386db261f4eaa4898da0
SHA3-384 hash: 62736ced430cd1dcfbc1e06a4ed04e219da025d5cc85cc8a78513c5e9e3473a0274aad203ef909b2d66c41da4ccf90d4
SHA1 hash: 83b74c657eb27ec46cbec20749433e31481fda0b
MD5 hash: 8eaf51a4014ef2989d1bacc6bce19487
humanhash: hydrogen-arkansas-robin-sodium
File name:6574f1b9d0dc6451993ccf8c0ab2277051c7d1c8c3a2386db261f4eaa4898da0
Download: download sample
File size:4'447'232 bytes
First seen:2020-06-03 09:42:26 UTC
Last seen:Never
File type:Executable exe
MIME type:application/x-dosexec
imphash a64e048b98d051ae6e6b6334f77c95d3 (7 x Berbew)
ssdeep 24576:I7CMmsS7CMGCMgCM7CMKDzM7CMZCMgCM7CMaq7CMZCMgCM7CMKDzM7CMZCMgCM7f:oTD3D
TLSH 6D265B7E16B210AAF5D782B11FD73AF4A2B1156133B983DC7EA4926C1B1807E153FAD0
Reporter raashidbhatt
Tags:exe

Intelligence

File Origin
# of uploads :
1
# of downloads :
63
Origin country :
n/a
Vendor Threat Intelligence
Detection(s):
Win.Trojan.Crypted-29
Create hunting rule

Win.Trojan.Obfus-38
Create hunting rule

Win.Malware.Qukart-6787531-0
Create hunting rule

Gathering data
Threat name:
Win32.Trojan.Berbew
Create hunting rule
Status:
Malicious
First seen:
2020-06-04 04:29:30 UTC
AV detection:
46 of 48 (95.83%)
Threat level:
  5/5
Verdict:
unknown
Gathering data
Please note that we are no longer able to provide a coverage score for Virus Total.

File information

The table below shows additional information about this malware sample such as delivery method and external references.

Comments