MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 6bf7233875ce4f332ca91416ed61c19251ec92175b09316f039af4d916fd0057. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


Intelligence 1 File information 1 Yara Comments

SHA256 hash: 6bf7233875ce4f332ca91416ed61c19251ec92175b09316f039af4d916fd0057
SHA3-384 hash: 875b893908357a3137b5b678a896607906234b568dda92bdd8aaa04c66948a64e506cba282d4bc638f9408fc2fef1083
SHA1 hash: f3cbc292e07645fb2d857790139f4f2fe496af3e
MD5 hash: 0cea72b03bd185ade03e6f515b36e06f
humanhash: equal-hamper-don-arizona
File name:6788_3809_yytn.zip
Download: download sample
Signature n/a
File size:313'104 bytes
First seen:2020-06-30 12:21:29 UTC
Last seen:Never
File type: zip
MIME type:application/zip
ssdeep 6144:ca4D2mL1Zc0wi08+lfMwPVUR71/H/vHyLLwqmiBgSwxCJqE:h4SmLzc0MU0GR71/fvqsqMSxJqE
TLSH D26423C575FB57A961C6FE6383448A657719B04B00FF9BFA33118EB6B8EF622010D981
Reporter @jarumlus

Intelligence


Mail intelligence
Trap location Impact
CH Switzerland Low
# of uploads 1
# of downloads 26
Origin country FR FR
ClamAV SecuriteInfo.com.PUA.VBS-in-ZIP.UNOFFICIAL
CERT.PL MWDB Detection:n/a
Link: https://mwdb.cert.pl/sample/6bf7233875ce4f332ca91416ed61c19251ec92175b09316f039af4d916fd0057/
ReversingLabs :Status:Malicious
Threat name:Script-VBS.Trojan.Kryptik
First seen:2020-06-30 12:23:03 UTC
AV detection:14 of 48 (29.17%)
Threat level:   2/5
VirusTotal:No data

File information


The table below shows additional information about this malware sample such as delivery method and external references.

Malspam

zip 6bf7233875ce4f332ca91416ed61c19251ec92175b09316f039af4d916fd0057

(this sample)

  
Delivery method
Distributed via e-mail attachment

Comments