MalwareBazaar Database
You are currently viewing the MalwareBazaar entry for SHA256 70a5c6958a4955a582703ab85914ec72f29b80d4d368642f63b5d41cc52a0331. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.
Database Entry
Formbook
Vendor detections: 4
| SHA256 hash: | 70a5c6958a4955a582703ab85914ec72f29b80d4d368642f63b5d41cc52a0331 |
|---|---|
| SHA3-384 hash: | 2515b62d6b3571210d283d70e937ecb564f13d96d9c5ec3f916854dd2eda0bcaf55ea693390424fb2c7ac3625ae09672 |
| SHA1 hash: | 0e0645f784a7785b97538bc3ade85a3c41cb21f6 |
| MD5 hash: | 881473ad5b8376399f3df18ae371597f |
| humanhash: | quebec-oklahoma-sodium-seventeen |
| File name: | Shipping Document PL&BL Draft (1).XZ |
| Download: | download sample |
| Signature | Formbook |
| File size: | 301'525 bytes |
| First seen: | 2021-01-22 06:33:03 UTC |
| Last seen: | 2021-02-12 21:51:36 UTC |
| File type: | xz |
| MIME type: | application/x-7z-compressed |
| ssdeep | 6144:LpZfXsokkX8A2l8/xk4jbrQ+LjD9bHk1auTHmM0e90Mzd:L38oLX8A2g/LjpbEtK9dod |
| TLSH | 675423216A48126F570C1618227E2E69E58C2D87DBDF9E14B7D3EF472ADE1728DC02E4 |
| Reporter |  lowmal3 |
| Tags: | FormBook |
Intelligence
File Origin
# of uploads :
2
# of downloads :
109
Origin country :
n/a
Vendor Threat Intelligence
Threat name:
Win32.Trojan.Mikey
Status:
Malicious
First seen:
2021-01-22 03:35:19 UTC
AV detection:
14 of 44 (31.82%)
Threat level:
5/5
Detection(s):
Suspicious file
Please note that we are no longer able to provide a coverage score for Virus Total.
Threat name:
Kryptik
Score:
1.00
File information
The table below shows additional information about this malware sample such as delivery method and external references.
Malspam
Delivery method
Distributed via e-mail attachment
Comments
Login required
You need to login to in order to write a comment. Login with your abuse.ch account.