MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 665598166efa71674b561fc02ca1d6e0ebfddbaf7d2b75008b71e540a5ea4158. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


Threat unknown


Vendor detections: 7


Intelligence 7 IOCs YARA File information Comments
Download sample Add tag Delete this sample Report a False Positive

SHA256 hash: 665598166efa71674b561fc02ca1d6e0ebfddbaf7d2b75008b71e540a5ea4158
SHA3-384 hash: 8a976e965226f7e5af0b81480955be2d08ed2650f948f1a62605d4db92f452bd0c91925aefa9a7a9a53d233c10fa34c6
SHA1 hash: 213b85546fa243ed37b659abe836993fe1f9af87
MD5 hash: 17c4272f6c4c37759046d2f396addf83
humanhash: enemy-lima-failed-arkansas
File name:SecuriteInfo.com.Trojan.GenericKD.80268890.24667.10694
Download: download sample
File size:11'754 bytes
First seen:2026-06-02 18:20:36 UTC
Last seen:Never
File type:Excel file xlsx
MIME type:application/vnd.openxmlformats-officedocument.spreadsheetml.sheet
ssdeep 192:Kgq11eb3UB1TOcXt+wmy4NGkmAfTmn5rDeqhtbGJCW3kZUlf0z3QQ:Kf23+4c9+57NGkmAbmn5rD7htzif0L
TLSH T1AE329F0EE149D864FA52A83DC84543E2D24D3005CB41719F7451B97C9B819EB1BAFAFD
TrID 61.2% (.XLSX) Excel Microsoft Office Open XML Format document (34000/1/7)
31.5% (.ZIP) Open Packaging Conventions container (17500/1/4)
7.2% (.ZIP) ZIP compressed archive (4000/1)
Magika xlsx
Reporter SecuriteInfoCom
Tags:xlsx

Intelligence

File Origin
# of uploads :
1
# of downloads :
137
Origin country :
FR FR
Vendor Threat Intelligence
Malware configuration found for:
MSO
Details
MSO
extracted OLE packages, if they are present within the input OOXML document
Link:
https://research.acce.ciphertechsolutions.com/results/c216e59e-8c27-4626-b21b-f41c9d099953/
Malware family:
n/a
ID:
1
File name:
xlsx
Verdict:
No threats detected
Analysis date:
2026-06-02 18:22:09 UTC
Tags:
n/a
Link:
https://app.any.run/tasks/b7cf48fe-68c1-4491-bc19-dca400d169f2

Note:
ANY.RUN is an interactive sandbox that analyzes all user actions rather than an uploaded sample
Detection:
n/a
Link:
https://www.capesandbox.com/analysis/68838/
Verdict:
Malicious
Score:
90.2%
Link:
https://cyber-fortress.com/docs/result/index.php?id=6a1f1f2c57b7bf261d605f7e
Tags:
virus remo
Result
Verdict:
Clean
Maliciousness:

Behaviour
Creating a window
Сreating synchronization primitives
Sending a custom TCP request
Verdict:
Unknown
Threat level:
  2.5/10
Confidence:
100%
Tags:
language-sr
Link:
https://www.filescan.io/uploads/6a1f1f28099ef368af178f12/reports/2fe763b2-4974-4252-be13-50b7f59f2c1f/overview
Verdict:
Malicious
Labled as:
Trojan.Generic
Link:
https://www.hybrid-analysis.com/sample/665598166efa71674b561fc02ca1d6e0ebfddbaf7d2b75008b71e540a5ea4158
Label:
Benign
Suspicious Score:
8/10
Score Malicious:
9%
Score Benign:
91%
Link:
https://www.malware.ai/gui/files/?id=80cfc787-bf0a-4835-b235-00d8f2cd5d4e
Score:
0%
Verdict:
Benign
File Type:
OFFICE
Link:
https://malprob.io/report/665598166efa71674b561fc02ca1d6e0ebfddbaf7d2b75008b71e540a5ea4158
Gathering data
Detection:
n/a
Link:
https://mwdb.cert.pl/sample/665598166efa71674b561fc02ca1d6e0ebfddbaf7d2b75008b71e540a5ea4158/
Threat name:
Document.Trojan.Heuristic
Create hunting rule
Status:
Malicious
First seen:
2026-06-02 18:21:38 UTC
File Type:
Document
Extracted files:
13
AV detection:
3 of 36 (8.33%)
Threat level:
  2/5
Detection(s):
Suspicious file
Link:
https://check.spamhaus.org/check/?searchterm=mzkzqfto7jywos2wd7acziow4dv73w5ppuvxkaelohsubjpkifma._file
Result
Malware family:
n/a
Score:
  1/10
Tags:
n/a
Link:
https://tria.ge/reports/260602-wy41fscv4s/
Behaviour
Checks processor information in registry
Enumerates system info in registry
Suspicious behavior: AddClipboardFormatListener
Suspicious use of SetWindowsHookEx
Please note that we are no longer able to provide a coverage score for Virus Total.

File information

The table below shows additional information about this malware sample such as delivery method and external references.

Cape
Cape
https://www.capesandbox.com/analysis/68838/

Comments