MalwareBazaar Database
You are currently viewing the MalwareBazaar entry for SHA256 6e2fa52851414eb916534031d40017a78e8c98bb6a1c9c229383634be813f9e3. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.
Database Entry
MassLogger
Vendor detections: 3
| SHA256 hash: | 6e2fa52851414eb916534031d40017a78e8c98bb6a1c9c229383634be813f9e3 |
|---|---|
| SHA3-384 hash: | 78f9b066c1f92c67a2bdef9e7a192a3e2e0206a4e359cdf62a8a0c40fd9525792a7ca14dc36022922465e466c156292f |
| SHA1 hash: | e9d325d1f038142d7d2424bf09ab627241ae1598 |
| MD5 hash: | cdb59f5aea0654b8277273e58a8ed3aa |
| humanhash: | comet-friend-utah-tango |
| File name: | SWIFT COPY PDF.rar |
| Download: | download sample |
| Signature | MassLogger |
| File size: | 767'967 bytes |
| First seen: | 2020-07-08 08:20:09 UTC |
| Last seen: | Never |
| File type: | rar |
| MIME type: | application/x-rar |
| ssdeep | 12288:t9ZUnIdqR4bSQx/iT+iZfZXMgkGCjD4wv56Tqlx59Vp0HHRQvI/SIXsBAGOvVTkH:tnUIdWlv8gbCwk6TqDcQv7I86ZToL |
| TLSH | 59F433B8BD836FA74195C8ED362D382266F60F779DED30461A2D10BEF6C76807A70125 |
| Reporter |  jarumlus |
| Tags: | MassLogger |
Intelligence
File Origin
# of uploads :
1
# of downloads :
72
Origin country :
n/a
Vendor Threat Intelligence
Threat name:
Win32.Infostealer.Fareit
Status:
Malicious
First seen:
2020-07-08 08:22:06 UTC
AV detection:
18 of 28 (64.29%)
Threat level:
5/5
Detection(s):
Suspicious file
Please note that we are no longer able to provide a coverage score for Virus Total.
File information
The table below shows additional information about this malware sample such as delivery method and external references.
Malspam
exe Delivery method
Distributed via e-mail attachment
Comments
Login required
You need to login to in order to write a comment. Login with your abuse.ch account.