MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 69b2df88f75b23f7f10bc8f86572b28edc08a5a3be03a3215eb1498d31b75af3. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


Intelligence 2 File information 2 Yara Comments

SHA256 hash: 69b2df88f75b23f7f10bc8f86572b28edc08a5a3be03a3215eb1498d31b75af3
SHA3-384 hash: 83b5fe888a5e61ae91b86354fde53efd7f0952db91d9cf57032cf2c0257e7beef0c0ea6f09be900b5c7eba936f5b0a0f
SHA1 hash: 18f5a4071f0e38e77732cf0849f772542b977a4a
MD5 hash: 8d3cc176043d4984981e4b1df9b630e3
humanhash: white-triple-victor-alpha
File name:PO.pdf.zip
Download: download sample
Signature AgentTesla
File size:247'384 bytes
First seen:2020-06-30 23:57:47 UTC
Last seen:Never
File type: zip
MIME type:application/zip
ssdeep 6144:fRrU8J5cK2iHoiWRyjB1Q9M1yUJZ808sMUYLKiCOiOGM:fRw84KRIiWU7F1ygcsMUYJtl
TLSH 23342331FDDCB5D28F3F2B2967829A882644737F5B268494E36830242F127D4787A9DD
Reporter @jarumlus
Tags:AgentTesla

Intelligence


Mail intelligence
Trap location Impact
Global High
# of uploads 1
# of downloads 27
Origin country FR FR
ClamAV SecuriteInfo.com.Variant.Zusy.195743.7977.29999.UNOFFICIAL
Sanesecurity.Malware.21241.ZipHeur.UNOFFICIAL
CERT.PL MWDB Detection:n/a
Link: https://mwdb.cert.pl/sample/69b2df88f75b23f7f10bc8f86572b28edc08a5a3be03a3215eb1498d31b75af3/
ReversingLabs :Status:Malicious
Threat name:ByteCode-MSIL.Trojan.Kryptik
First seen:2020-06-30 23:59:02 UTC
AV detection:18 of 31 (58.06%)
Threat level:   5/5
Spamhaus Hash Blocklist :Malicious file
VirusTotal:Virustotal results 30.30%

File information


The table below shows additional information about this malware sample such as delivery method and external references.

Malspam

AgentTesla

zip 69b2df88f75b23f7f10bc8f86572b28edc08a5a3be03a3215eb1498d31b75af3

(this sample)

  
Dropped by
AgentTesla
  
Delivery method
Distributed via e-mail attachment

Comments