MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 86fbb1a120d5ca03aa22913dc152d0a14f867fe14f30ae4490dba89dac4f5249. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


Intelligence 2 File information 2 Yara Comments

SHA256 hash: 86fbb1a120d5ca03aa22913dc152d0a14f867fe14f30ae4490dba89dac4f5249
SHA3-384 hash: 74de21df127804c0bfc49b88fa666f8366ee4d41088b511d45e1238c7b11c304c05926d88c14cd79e21f0262e052c920
SHA1 hash: fd3b54223f0304ca23d047b0ced19cc861a0df06
MD5 hash: 055c234a165e46963819dd1e11c1eebd
humanhash: fruit-single-seven-massachusetts
File name:Our Ref MIDLGB31..rar
Download: download sample
Signature n/a
File size:373'595 bytes
First seen:2020-06-30 16:15:34 UTC
Last seen:2020-06-30 17:10:34 UTC
File type: rar
MIME type:application/x-rar
ssdeep 6144:TiI1fZxuzBMuxanE1lL+94nmsfSjzqUfrn5scJfysAyEIb35aMFAsIkkCZAu2erY:3ffuTxZ1J+94msafqUVscJfnms5aMibJ
TLSH 218423BB36F2B0298080C4C74EBBAE31F35A507834867BB4D55F5081691E7E1EB8665B
Reporter @jarumlus
Tags:AgentTesla

Intelligence


Mail intelligence
Trap location Impact
Global High
IT Italy Low
CH Switzerland Low
# of uploads 2
# of downloads 29
Origin country FR FR
ClamAV Sanesecurity.Malware.27121.RarHeur.NoDP.UNOFFICIAL
CERT.PL MWDB Detection:n/a
Link: https://mwdb.cert.pl/sample/86fbb1a120d5ca03aa22913dc152d0a14f867fe14f30ae4490dba89dac4f5249/
ReversingLabs :Status:Malicious
Threat name:ByteCode-MSIL.Trojan.Kryptik
First seen:2020-06-30 16:17:04 UTC
AV detection:21 of 48 (43.75%)
Threat level:   5/5
Spamhaus Hash Blocklist :Suspicious file
VirusTotal:Virustotal results 28.33%

File information


The table below shows additional information about this malware sample such as delivery method and external references.

Malspam

rar 86fbb1a120d5ca03aa22913dc152d0a14f867fe14f30ae4490dba89dac4f5249

(this sample)

  
Dropped by
AgentTesla
  
Delivery method
Distributed via e-mail attachment

Comments