MalwareBazaar Database
You are currently viewing the MalwareBazaar entry for SHA256 7cc1641e42b1bdb8b7f31716792cc044ebbcd083bbc6ae31b3d6bb54f3bdb81c. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.
Database Entry
Threat unknown
Vendor detections: 5
| SHA256 hash: | 7cc1641e42b1bdb8b7f31716792cc044ebbcd083bbc6ae31b3d6bb54f3bdb81c |
|---|---|
| SHA3-384 hash: | 91d3d98f3dbad10f42f2b03dc6c3b53e90584c9f253bee3096391421d54a324e5941dff7180220fb407772397047406a |
| SHA1 hash: | 5c7cf23b03205de5e604e3a4ed9373dded680417 |
| MD5 hash: | 34559dc022f9ac4523f0f67ac893424e |
| humanhash: | delaware-mountain-undress-hydrogen |
| File name: | NEW-ORDER-PO-20200909.lha |
| Download: | download sample |
| File size: | 446'724 bytes |
| First seen: | 2021-01-26 12:24:43 UTC |
| Last seen: | Never |
| File type: | lha |
| MIME type: | application/x-lzh-compressed |
| ssdeep | 12288:uVGvElKjbNyY7mG+isH0MONq7e7lTqqwrYp:2GEKjMMd5N5lOnM |
| TLSH | 6C9423C76821466DD746B2732391C4BCE9398A49F61B06646BD830DFEBE393BC4304DA |
| Reporter |  fabjer |
| Tags: | lha |
Intelligence
File Origin
# of uploads :
1
# of downloads :
125
Origin country :
n/a
Vendor Threat Intelligence
Detection(s):
Result
Verdict:
MALICIOUS
Threat name:
ByteCode-MSIL.Trojan.Pwsx
Status:
Malicious
First seen:
2021-01-26 10:21:24 UTC
AV detection:
12 of 28 (42.86%)
Threat level:
5/5
Detection(s):
Suspicious file
Please note that we are no longer able to provide a coverage score for Virus Total.
Threat name:
Suspicious File
Score:
0.68
File information
The table below shows additional information about this malware sample such as delivery method and external references.
Malspam
lha 7cc1641e42b1bdb8b7f31716792cc044ebbcd083bbc6ae31b3d6bb54f3bdb81c
(this sample)
exe Delivery method
Distributed via e-mail attachment
Comments
Login required
You need to login to in order to write a comment. Login with your abuse.ch account.