MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 8a8389a28931f6417470d50efb8d65c377bc78e9fb08b9cf0bbbec09ac082a39. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


Threat unknown


Vendor detections: 3


Intelligence 3 IOCs YARA File information Comments
Download sample Add tag Delete this sample Report a False Positive

SHA256 hash: 8a8389a28931f6417470d50efb8d65c377bc78e9fb08b9cf0bbbec09ac082a39
SHA3-384 hash: 9180e4aa16aab6382672cd5bd28445fdbd735484e66253bce5ad8c5a576d927f2c686ed06f4c0ff41ccfa8d1e51784c1
SHA1 hash: fa4b4da656154c810456f9b076412bc5a28468e8
MD5 hash: 789fd98a78d149b5527f298dfd10c64e
humanhash: crazy-avocado-three-twelve
File name:adb.sh
Download: download sample
File size:1'158 bytes
First seen:2026-04-14 19:50:33 UTC
Last seen:Never
File type: sh
MIME type:text/x-shellscript
ssdeep 24:CEWiePYIEteYFBnaV0sB7C8hS1SgId/6FhS1RnCVlpQ:CEfKYIE7naV0IC8cdId/ihS/nIY
TLSH T13A21DD1AD3005DF87985046C495FE67056CB03E74B1E2195F9DD68641F7C24DB2BC3A5
TrID 70.0% (.SH) Linux/UNIX shell script (7000/1)
30.0% (.) Unix-like shebang (var.3) (gen) (3000/1)
Magika shell
Reporter abuse_ch
Tags:sh

Intelligence

File Origin
# of uploads :
1
# of downloads :
43
Origin country :
DE DE
Vendor Threat Intelligence
No detections
Gathering data
Verdict:
Clean
File Type:
unix shell
First seen:
2026-04-14T16:57:00Z UTC
Last seen:
2026-04-14T17:45:00Z UTC
Hits:
~10
Link:
https://opentip.kaspersky.com/8a8389a28931f6417470d50efb8d65c377bc78e9fb08b9cf0bbbec09ac082a39/results?tab=lookup
Score:
0%
Verdict:
Benign
File Type:
SCRIPT
Link:
https://malprob.io/report/8a8389a28931f6417470d50efb8d65c377bc78e9fb08b9cf0bbbec09ac082a39
Detection:
n/a
Link:
https://mwdb.cert.pl/sample/8a8389a28931f6417470d50efb8d65c377bc78e9fb08b9cf0bbbec09ac082a39/
Verdict:
Clean
Link:
https://tip.neiki.dev/file/8a8389a28931f6417470d50efb8d65c377bc78e9fb08b9cf0bbbec09ac082a39
Threat name:
Text.Trojan.Generic
Create hunting rule
Status:
Suspicious
First seen:
2026-04-14 19:51:46 UTC
File Type:
Text (Shell)
AV detection:
4 of 38 (10.53%)
Threat level:
  5/5
Detection(s):
Suspicious file
Link:
https://check.spamhaus.org/check/?searchterm=rkbytiujgh3ec5dq2uhpxdlfyn33y6hj7melttylxpwatlaifi4q._file
Result
Malware family:
n/a
Score:
  3/10
Tags:
discovery linux
Link:
https://tria.ge/reports/260414-ykw4sses9v/
Behaviour
Reads runtime system information
Please note that we are no longer able to provide a coverage score for Virus Total.
Threat name:
Legit
Score:
0.00
Link:
https://yomi.yoroi.company/submissions/8a8389a28931f6417470d50efb8d65c377bc78e9fb08b9cf0bbbec09ac082a39

File information

The table below shows additional information about this malware sample such as delivery method and external references.

Web download

sh 8a8389a28931f6417470d50efb8d65c377bc78e9fb08b9cf0bbbec09ac082a39

(this sample)

  
URLhaus
https://urlhaus.abuse.ch/url/3821635/
  
Delivery method
Distributed via web download

Comments