MalwareBazaar Database
You are currently viewing the MalwareBazaar entry for SHA256 90d33d2d0469b0646c3eb8f83828b66745e3ee6671e86967a649f3f50dd11abe. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.
Database Entry
Formbook
Vendor detections: 3
| SHA256 hash: | 90d33d2d0469b0646c3eb8f83828b66745e3ee6671e86967a649f3f50dd11abe |
|---|---|
| SHA3-384 hash: | b246179147b9830be562ed454974c92f3ae5a7be3fd8b3ac8ceea8355730bef6d8de882e58a3df4d52902de34216a27a |
| SHA1 hash: | 2297b72c74978bd52dbdfca3276d5a3cddc0457c |
| MD5 hash: | 35b42036d1394db72a5ec6eb0c61aa5e |
| humanhash: | vegan-stairway-river-monkey |
| File name: | PAYMENT COPY.z |
| Download: | download sample |
| Signature | Formbook |
| File size: | 628'511 bytes |
| First seen: | 2020-12-02 06:17:39 UTC |
| Last seen: | 2020-12-02 06:59:03 UTC |
| File type: | z |
| MIME type: | application/x-rar |
| ssdeep | 12288:XqtEtxBwtQw5tb/l40RbAjwKUZWs7qeXdTRXxMHVynYge5uhmdpSNyM0Hr7102po:6tEtMew/lfROqDqURXx7YgGsclM2r7Sn |
| TLSH | 69D4338D0FE236BD67826BB5FAECD1018E21438472AA137373EDB7E61390A0B657C514 |
| Reporter |  GovCERT_CH |
Intelligence
File Origin
# of uploads :
2
# of downloads :
92
Origin country :
n/a
Vendor Threat Intelligence
Detection(s):
Result
Gathering data
Threat name:
ByteCode-MSIL.Trojan.Wacatac
Status:
Malicious
First seen:
2020-12-02 06:18:10 UTC
File Type:
Binary (Archive)
Extracted files:
10
AV detection:
6 of 48 (12.50%)
Threat level:
5/5
Detection(s):
Malicious file
Please note that we are no longer able to provide a coverage score for Virus Total.
Threat name:
Legit
Score:
0.00
File information
The table below shows additional information about this malware sample such as delivery method and external references.
Malspam
Delivery method
Distributed via e-mail attachment
Comments
Login required
You need to login to in order to write a comment. Login with your abuse.ch account.