MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 86b6fd1cbcf3a37d61719b7c86a723b95d7b3b42dfbedf9986c8cda28a69449a. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


Threat unknown


Vendor detections: 5


Intelligence 5 IOCs YARA 1 File information Comments
Download sample Add tag Delete this sample Report a False Positive

SHA256 hash: 86b6fd1cbcf3a37d61719b7c86a723b95d7b3b42dfbedf9986c8cda28a69449a
SHA3-384 hash: 71d561acb9baaf88fb3a80334420e341836ef3bd7b75aeb334252ee61d7364545f14e4cd92f9ef21fb12a0b439779c47
SHA1 hash: 10e1a877b80e02215871162ed77617cb50b0e5e3
MD5 hash: 5c4ae153cde24431d08e04f345ab8fdf
humanhash: equal-four-leopard-burger
File name:imagekdfgueuehedb6666.zip
Download: download sample
File size:1'649'472 bytes
First seen:2026-04-29 07:49:40 UTC
Last seen:Never
File type: zip
MIME type:application/zip
ssdeep 49152:cMpiSgpjkjIrbKT6gBXO3jMtDwQvE0aDG:r0ajO3WO3jSDjvEBDG
TLSH T1397533E7C44E99EDFEDF412005031B90B6DA9B928694787A4C25E3BC821C53BAC25F77
Magika zip
Reporter JAMESWT_WT
Tags:dropped everycarebd-com imagekdfgueuehedb6666 Spam-ITA stego zip

Intelligence

File Origin
# of uploads :
1
# of downloads :
130
Origin country :
IT IT
File Archive Information

This file archive contains 1 file(s), sorted by their relevance:

File name:imagekdfgueuehedb6666
File size:1'649'296 bytes
SHA256 hash: 954dc8e0a88261cae66e2df1406d3f921922c1876fee86229fe311a94ff97992
MD5 hash: 25d485167e264fdb0edbf707e532b6d9
MIME type:image/png
Vendor Threat Intelligence
Details
Link:
https://research.acce.ciphertechsolutions.com/results/84f81a39-49ba-4915-b761-64bcd17bbdca/
Result
Verdict:
Unknown
File Type:
ZIP File
Link:
https://app.docguard.net/86b6fd1cbcf3a37d61719b7c86a723b95d7b3b42dfbedf9986c8cda28a69449a/results/dashboard
Verdict:
Unknown
Link:
https://www.hybrid-analysis.com/sample/86b6fd1cbcf3a37d61719b7c86a723b95d7b3b42dfbedf9986c8cda28a69449a
Result
Verdict:
UNKNOWN
Link:
https://labs.inquest.net/dfi/sha256/86b6fd1cbcf3a37d61719b7c86a723b95d7b3b42dfbedf9986c8cda28a69449a
Verdict:
Unknown
File Type:
zip
Link:
https://opentip.kaspersky.com/86b6fd1cbcf3a37d61719b7c86a723b95d7b3b42dfbedf9986c8cda28a69449a/results?tab=lookup
Score:
0%
Verdict:
Benign
File Type:
ARCHIVE
Link:
https://malprob.io/report/86b6fd1cbcf3a37d61719b7c86a723b95d7b3b42dfbedf9986c8cda28a69449a
Gathering data
Detection:
n/a
Link:
https://mwdb.cert.pl/sample/86b6fd1cbcf3a37d61719b7c86a723b95d7b3b42dfbedf9986c8cda28a69449a/
Threat name:
ByteCode-MSIL.Trojan.Generic
Create hunting rule
Status:
Suspicious
First seen:
2026-04-29 07:50:43 UTC
File Type:
Binary (Archive)
Extracted files:
2
AV detection:
4 of 24 (16.67%)
Threat level:
  5/5
Detection(s):
Suspicious file
Link:
https://check.spamhaus.org/check/?searchterm=q23p2hf46orx2ylrtn6injzdxfoxwo2c367n7gmgzdg2fctjisna._file
Result
Malware family:
n/a
Score:
  1/10
Tags:
n/a
Link:
https://tria.ge/reports/260429-j9hv5sht5z/
Please note that we are no longer able to provide a coverage score for Virus Total.
Threat name:
Malicious File
Score:
1.00
Link:
https://yomi.yoroi.company/submissions/86b6fd1cbcf3a37d61719b7c86a723b95d7b3b42dfbedf9986c8cda28a69449a

YARA Signatures

MalwareBazaar uses YARA rules from several public and non-public repositories, such as YARAhub and Malpedia. Those are being matched against malware samples uploaded to MalwareBazaar as well as against any suspicious process dumps they may create. Please note that only results from TLP:CLEAR rules are being displayed.

Rule name:Weedhack_Family_Generic
Create hunting rule
Author:jlab
Description:Generic Weedhack family detection

File information

The table below shows additional information about this malware sample such as delivery method and external references.

Comments