MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 984ce69083f2865ce90b48569291982e786980aeef83345953276adfcbbeece8. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


DarkSide


Vendor detections: 3


Intelligence 3 IOCs YARA File information Comments
Download sample Add tag Delete this sample Report a False Positive

SHA256 hash: 984ce69083f2865ce90b48569291982e786980aeef83345953276adfcbbeece8
SHA3-384 hash: 1562893b35507e675cbe8010059d557ec15bdcb849822829c311b1c77cb72f67718c7e32853fc502e258d57fc802437d
SHA1 hash: d2963f8152de10bacd97643f57ad4048ae6c5825
MD5 hash: 85547c6e720886c33bdacae81c180c46
humanhash: arkansas-floor-emma-pizza
File name:Elf 64bit (2)
Download: download sample
Signature DarkSide
Create hunting rule
File size:2'764'168 bytes
First seen:2021-05-01 00:54:23 UTC
Last seen:Never
File type: elf
MIME type:application/x-executable
ssdeep 49152:oJmY6kmswoLb1YLOoh2uFkkSUoFlj7Ktrhm+CF3THQc:oJw0b6/kkSzjer0PHQ
TLSH 6ED54B1BFDA658EBC1D6D830821F8097B9217C5943326E3B6195F6352D7AF204F3A722
telfhash f731ed0d693c16ed99a48c60ec182bd38043c1366222bb0aff66dec4596e84af108d0f
Reporter JAMESWT_WT
Tags:64bit DarkSide elf Ransomware

Intelligence

File Origin
# of uploads :
1
# of downloads :
484
Origin country :
n/a
Vendor Threat Intelligence
Result
Verdict:
MALICIOUS
Detection:
n/a
Link:
https://mwdb.cert.pl/sample/984ce69083f2865ce90b48569291982e786980aeef83345953276adfcbbeece8/
Threat name:
Linux.Ransomware.DarkSide
Create hunting rule
Status:
Malicious
First seen:
2021-03-01 20:41:04 UTC
File Type:
ELF64 Little (Exe)
AV detection:
14 of 28 (50.00%)
Threat level:
  5/5
Result
Malware family:
n/a
Score:
  6/10
Tags:
linux
Link:
https://tria.ge/reports/210501-1l2k8m8rz2/
Behaviour
Reads CPU attributes
Please note that we are no longer able to provide a coverage score for Virus Total.
Threat name:
Suspicious File
Score:
0.30
Link:
https://yomi.yoroi.company/submissions/984ce69083f2865ce90b48569291982e786980aeef83345953276adfcbbeece8

File information

The table below shows additional information about this malware sample such as delivery method and external references.

Comments