MalwareBazaar Database
You are currently viewing the MalwareBazaar entry for SHA256 6fc13e04620361a58131e776473bef6df5a9f5a5004b85e3e76f129eee7cc5d1. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.
Database Entry
FormBook
Vendor detections: 2
| SHA256 hash: | 6fc13e04620361a58131e776473bef6df5a9f5a5004b85e3e76f129eee7cc5d1 |
|---|---|
| SHA3-384 hash: | d890870a17292f41b453863aebf3e67069055132d778a111010a6747e223444926e4fc8d6894246bec107f170d8e71fa |
| SHA1 hash: | 22144379f1f7621d2612e7cab8cb199edb93e613 |
| MD5 hash: | 89a6192016b2bd2af784268a4d05cdb4 |
| humanhash: | delaware-three-carolina-mango |
| File name: | DHL Shipment.ace |
| Download: | download sample |
| Signature | FormBook |
| File size: | 368'280 bytes |
| First seen: | 2020-05-15 17:34:42 UTC |
| Last seen: | Never |
| File type: | ace |
| MIME type: | application/octet-stream |
| ssdeep | 6144:ncRZS/yCy6O9PwU+IQL6okKTwmdE548RX/l4XxTBRMJZ2dBklNaVySNoFj:sSvzswU+IG6okKTwmmzPChliMmraMSmp |
| TLSH | 1074238E57B8608CB390E277C93FC693E25CD7650512A6127DDC90D3BBA6E27C9DE140 |
| Reporter |  jarumlus |
Intelligence
File Origin
# of uploads :
1
# of downloads :
80
Origin country :
n/a
Vendor Threat Intelligence
Gathering data
Threat name:
Win32.Trojan.Injector
Status:
Malicious
First seen:
2020-05-15 17:35:30 UTC
File Type:
Binary (Archive)
Extracted files:
318
AV detection:
23 of 48 (47.92%)
Threat level:
5/5
Please note that we are no longer able to provide a coverage score for Virus Total.
File information
The table below shows additional information about this malware sample such as delivery method and external references.
Malspam
exe Delivery method
Distributed via e-mail attachment
Comments
Login required
You need to login to in order to write a comment. Login with your abuse.ch account.