MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 8c3d5e134df25eda7738bbbfaea35569b90bbc9f00308ca32ff6feb76e783e11. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


Threat unknown


Vendor detections: 3


Intelligence 3 IOCs YARA File information Comments
Download sample Add tag Delete this sample Report a False Positive

SHA256 hash: 8c3d5e134df25eda7738bbbfaea35569b90bbc9f00308ca32ff6feb76e783e11
SHA3-384 hash: 9702f4009f1d447cf63470675e67ae32ea3b936ce649372908b084652b30b410356079736a3dbec60a0c947f4d1709fd
SHA1 hash: d3aede9f7343f29946e20bc8908a6f6315c9ca00
MD5 hash: b74f7681e73198347f16930f728d977d
humanhash: sink-lion-missouri-oven
File name:U9SC2SH.exe
Download: download sample
File size:1'187'840 bytes
First seen:2020-06-16 03:39:05 UTC
Last seen:Never
File type:Executable exe
MIME type:application/x-dosexec
imphash ca830c58147650c3860be71b3847eb7e
ssdeep 24576:yzn/imuX0LsYS72VzoBWPLsdEMWG9iz6EzcMLheHrsNTaYZxMV5:yzn/iD0gh72loKs+DsiF7LhEwGjV
Threatray 13 similar samples on MalwareBazaar
TLSH A04523C062A2D2B5C5B94132CE6BECB96965DF22C660CD0B97D83D4F3C6B5C5234B326
Reporter Abjuri5t
Tags:COVID-19 dropper exe packed


Avatar
Abjuri5t
Submitted to the Covid-19 Cyber Threat Coalition as a network IOC

Intelligence

File Origin
# of uploads :
1
# of downloads :
409
Origin country :
n/a
Vendor Threat Intelligence
Detection:
n/a
Link:
https://www.capesandbox.com/analysis/10535/
Detection(s):
SecuriteInfo.com.Generic6_c.CBUP.15412.9701.6367.UNOFFICIAL
Create hunting rule

Gathering data
Threat name:
Win32.Trojan.Black
Create hunting rule
Status:
Suspicious
First seen:
2012-10-24 13:35:00 UTC
File Type:
PE (Exe)
Extracted files:
24
AV detection:
35 of 48 (72.92%)
Threat level:
  5/5
Verdict:
malicious
Similar samples:
0a638978d1fdcdf0612412cd730670d5438a9ddfd57f30cab90bcd716655359c
0dece9fdaaf9fca84d4ea64f94e789ee03a7a7e663d138327c662c4fc23aa2bb
1495a59a2300245b0c8cfdfe2e467de7f79a4d287e10e9119a96cdac0a1b7c5b
34e142c3ca75844c48639cfc8f60513d23c02a65addef3bce69f5b49b34277a1
37c291fe506e5b0f10401b2c68a2aeb4a5721d881a4eaad170d59376472cd1ec
57cf4470348e3b5da0fa3152be84a81a5e2ce5d794976387be290f528fa419fd
5b5eab7a12fdfc6cc39e39193b7a9020ee46e72acac70033236ef9b6b2da32c7
63b618d089d36a9be597c7492ff172178bab27004785a3d53f530ffcb67102b3
77b2ce43a1a7363d6c90b9b11fc05220511a868f4f8ca72cd6cbe3219f79fbdd
ae2ee9f58ee2c27d739190e1176d8898a49ddac0c36e392115f12309ac07e63a
+ 3 additional samples on MalwareBazaar
Result
Malware family:
n/a
Score:
  1/10
Tags:
n/a
Link:
https://tria.ge/reports/201109-31t6a93sjx/
Behaviour
Suspicious behavior: GetForegroundWindowSpam
Please note that we are no longer able to provide a coverage score for Virus Total.

File information

The table below shows additional information about this malware sample such as delivery method and external references.

  
Link
http://dl.198424.com/soft1/sc2_tool.zip
  
Delivery method
Other
Cape
Cape
https://www.capesandbox.com/analysis/10535/

Comments