MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 79b59d0b510fb8855ee624fd51b46c2b4f1cccef9294860f9864f00183b07e2c. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


Intelligence File information 1 Yara Comments

SHA256 hash: 79b59d0b510fb8855ee624fd51b46c2b4f1cccef9294860f9864f00183b07e2c
SHA3-384 hash: 00b6a5ee2a773445a9095639ac065201429a752ad26097a67b7ea904d3e63615106fb5157bc11fdcb22e825615479540
SHA1 hash: 46e3f1b7e3c93f3de52d63a1afb3b6f6c17180b8
MD5 hash: ba1697038db097aae963962a1fd5dd15
humanhash: echo-seventeen-zulu-juliet
File name:FattDiffEmessa2020 03799870369.vbs
Download: download sample
Signature n/a
File size:3'732 bytes
First seen:2020-06-30 11:35:45 UTC
Last seen:Never
File type:Visual Basic Script (vbs) vbs
MIME type:text/plain
ssdeep 96:eDhbF3uKF/FPz9LBF0FRnXoPxEouQRs8RHfvRBZXjof5P:gF+KF/FrF0FRnXuxnnsS/nif5P
TLSH 4D71D7CF300136B4A0D6E5A68BFF815F8BB759CA2350D5076244FFD5AC2921B6312C67
Reporter @JAMESWT_MHT

Intelligence


Mail intelligence No data
# of uploads 1
# of downloads 26
Origin country IT IT
CAPE Sandbox Detection:n/a
Link: https://www.capesandbox.com/analysis/17092/
ClamAV SecuriteInfo.com.Trojan.DownLoader33.58842.21398.14810.UNOFFICIAL
CERT.PL MWDB Detection:n/a
Link: https://mwdb.cert.pl/sample/79b59d0b510fb8855ee624fd51b46c2b4f1cccef9294860f9864f00183b07e2c/
ReversingLabs :Status:Malicious
Threat name:Script-VBS.Trojan.Frs
First seen:2020-06-28 23:21:25 UTC
AV detection:11 of 31 (35.48%)
Threat level:   2/5
Hatching Triage Score:   8/10
Malware Family:n/a
Link: https://tria.ge/reports/200630-eb98az4x3x/
Tags:n/a
VirusTotal:Virustotal results 13.56%

File information


The table below shows additional information about this malware sample such as delivery method and external references.

Comments