MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 813fc449e74b6be62c266cca90299d77119a1a0f6449c4d54186651e3a3c933a. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


Threat unknown


Vendor detections: 2


Intelligence 2 IOCs YARA File information Comments
Download sample Add tag Delete this sample Report a False Positive

SHA256 hash: 813fc449e74b6be62c266cca90299d77119a1a0f6449c4d54186651e3a3c933a
SHA3-384 hash: 80c9717661175687bee628bcc15422604a02b76ada311416868fd4d78b733c82dba492149fa8e5957522157139801379
SHA1 hash: c32e7836a744b9e41db0c6f63fd183358d5dbece
MD5 hash: e681f101b83a0951dccb1308c85a7cb5
humanhash: batman-zulu-ohio-beer
File name:Attack.jpg
Download: download sample
File size:2'355'745 bytes
First seen:2020-06-24 08:23:08 UTC
Last seen:Never
File type:unknown
MIME type:text/plain
ssdeep 384:hvIRKyGOVD5wVVDzHhrijOq1+I0uUyZKc6LzfICE6jVNViFeD//+quZ/9hL8rW0H:x
TLSH A3B5BF49A973C476F9DA76F0542033DD98B9A7002121DF3E2B3BBD67664107E42A8DE3
Reporter JAMESWT_WT
Tags:Encoded RemcosRAT

Intelligence

File Origin
# of uploads :
1
# of downloads :
78
Origin country :
n/a
Vendor Threat Intelligence
Detection(s):
SecuriteInfo.com.PowerShell.Siggen.1866.21251.7882.UNOFFICIAL
Create hunting rule

Detection:
n/a
Link:
https://mwdb.cert.pl/sample/813fc449e74b6be62c266cca90299d77119a1a0f6449c4d54186651e3a3c933a/
Threat name:
Script-PowerShell.Trojan.Heuristic
Create hunting rule
Status:
Malicious
First seen:
2020-06-24 06:28:43 UTC
File Type:
Text
AV detection:
8 of 31 (25.81%)
Threat level:
  2/5
Please note that we are no longer able to provide a coverage score for Virus Total.

File information

The table below shows additional information about this malware sample such as delivery method and external references.

Comments