MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 705502cafc4ad77814718ed457ab104c680530addd7de07198f1ced38108a88d. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


Intelligence File information 1 Yara Comments

SHA256 hash: 705502cafc4ad77814718ed457ab104c680530addd7de07198f1ced38108a88d
SHA3-384 hash: 9fb5a26f56548b4df74d7f128cd1bd31db48f0d57d4e60734120f0c01eaff38041615c8a4760d416ef6704e0ea454cf2
SHA1 hash: 290ccfa77a87bc8c9ab7a7540e5b24f2ff7dc96b
MD5 hash: e8a47ae2dced173d369071fcb9f4fce6
humanhash: white-november-september-table
File name:2817_375157_wuj.zip
Download: download sample
Signature n/a
File size:256'745 bytes
First seen:2020-06-30 09:59:31 UTC
Last seen:Never
File type: zip
MIME type:application/zip
ssdeep 6144:JlY3B90t2zqSAhLoouvfJnr9qllf7H25bb/JrFRE5P8XYTu:T5t2ONLoHZr9qllf72Zx05Pju
TLSH 1A44232CBD51C4FD5C0796158DBE2DB1BF2E9BDF622485959B3B1AD0EB08007EA4029F
Reporter @jarumlus

Intelligence


Mail intelligence No data
# of uploads 1
# of downloads 28
Origin country US US
ClamAV SecuriteInfo.com.PUA.VBS-in-ZIP.UNOFFICIAL
CERT.PL MWDB Detection:n/a
Link: https://mwdb.cert.pl/sample/705502cafc4ad77814718ed457ab104c680530addd7de07198f1ced38108a88d/
ReversingLabs :Status:Malicious
Threat name:Script-VBS.Trojan.Kryptik
First seen:2020-06-30 10:01:04 UTC
AV detection:8 of 48 (16.67%)
Threat level:   2/5
VirusTotal:No data

File information


The table below shows additional information about this malware sample such as delivery method and external references.

Malspam

zip 705502cafc4ad77814718ed457ab104c680530addd7de07198f1ced38108a88d

(this sample)

  
Delivery method
Distributed via e-mail attachment

Comments