MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 8501a2aaa8b12bb2ff751d74120f36203d6bd1e92a2f468835a6e01d44f37c21. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


Prometei


Vendor detections: 1


Intelligence 1 IOCs YARA File information Comments
Download sample Add tag Delete this sample Report a False Positive

SHA256 hash: 8501a2aaa8b12bb2ff751d74120f36203d6bd1e92a2f468835a6e01d44f37c21
SHA3-384 hash: 3067313f4e8ee5f4d1bf19d1b9ac9305dcbd11016b31142a3bd47242b518a65bf052751896a800a25c3b0d1c4473baae
SHA1 hash: aa24e5a8f2caed733686ddc7327d36a91a642881
MD5 hash: 792b3556d2e86799fdd4f67284596b19
humanhash: aspen-uranus-orange-mars
File name:8501a2aaa8b12bb2ff751d74120f36203d6bd1e92a2f468835a6e01d44f37c21
Download: download sample
Signature Prometei
Create hunting rule
File size:9 bytes
First seen:2026-06-01 04:17:33 UTC
Last seen:Never
File type: sh
MIME type:text/plain
ssdeep 3:B5BR:fBR
TLSH TNULL
Magika txt
Reporter c2hunter
Tags:Prometei sh wraith

Intelligence

File Origin
# of uploads :
1
# of downloads :
13
Origin country :
US US
Vendor Threat Intelligence
No detections
Verdict:
Unknown
Threat level:
  2.5/10
Confidence:
100%
Link:
https://www.filescan.io/uploads/6a1d1ce8099ef368af122703/reports/b28e45a8-baae-4c7f-9ac8-998d461fccf2/overview
Verdict:
Clean
File Type:
text
First seen:
2010-07-23T07:38:00Z UTC
Last seen:
2020-10-17T14:47:00Z UTC
Hits:
~100
Link:
https://opentip.kaspersky.com/8501a2aaa8b12bb2ff751d74120f36203d6bd1e92a2f468835a6e01d44f37c21/results?tab=lookup
Status:
terminated
Link:
https://sandbox.kunai.rocks/analysis/45f72aae-75b1-400d-b76c-4abbb9aebbd2
Behavior Graph:
Download SVG
%3 guuid=68855664-1a00-0000-6247-9ce3f80a0000 pid=2808 /usr/bin/sudo guuid=eee2e266-1a00-0000-6247-9ce3fb0a0000 pid=2811 /tmp/sample.bin guuid=68855664-1a00-0000-6247-9ce3f80a0000 pid=2808->guuid=eee2e266-1a00-0000-6247-9ce3fb0a0000 pid=2811 execve
Score:
2%
Verdict:
Benign
File Type:
SCRIPT
Link:
https://malprob.io/report/8501a2aaa8b12bb2ff751d74120f36203d6bd1e92a2f468835a6e01d44f37c21
Detection:
n/a
Link:
https://mwdb.cert.pl/sample/8501a2aaa8b12bb2ff751d74120f36203d6bd1e92a2f468835a6e01d44f37c21/
Result
Malware family:
n/a
Score:
  3/10
Tags:
n/a
Link:
https://tria.ge/reports/260601-gge8fac13v/
Behaviour
Modifies registry class
Suspicious use of SetWindowsHookEx
Enumerates physical storage devices
Please note that we are no longer able to provide a coverage score for Virus Total.
Threat name:
Legit
Score:
0.00
Link:
https://yomi.yoroi.company/submissions/8501a2aaa8b12bb2ff751d74120f36203d6bd1e92a2f468835a6e01d44f37c21

File information

The table below shows additional information about this malware sample such as delivery method and external references.

Comments