MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 9d16b174597dbe3d864d4ca2ee574fa0829a11450b4fda2f586506ca9f5d6581. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry



Threat unknown


Vendor detections: 3


Intelligence 3 IOCs YARA File information Comments

SHA256 hash: 9d16b174597dbe3d864d4ca2ee574fa0829a11450b4fda2f586506ca9f5d6581
SHA3-384 hash: 2a44df493aa96778be08b5694817a9c223129dfd3aa3b268b48ef1ba79b6f8d3114e3c086b0544295720b8841f828b6a
SHA1 hash: 8f6ce473b57c0576aff1a17f261a4d48fcf116eb
MD5 hash: 359767cdc37f36e6c459117ab571a13b
humanhash: utah-kitten-yellow-sweet
File name:wifihacker.zip
Download: download sample
Signature n/a
File size:624'905 bytes
First seen:2020-04-20 21:01:39 UTC
Last seen:2022-04-19 21:07:08 UTC
File type: zip
MIME type:application/zip
ssdeep 12288:J21/q7mvb9wwG8WAR9iSQgPGt/tiBxrzmEXMuRWAjLgXgabeN879QPH:J21CAw1Q9iqPGt/ti7rbXMuR/LShS87K
TLSH 2CD433F08BD165E2D4EE1AD9A0011739D462D430514E9AA9FC4BB23D7F5BA13572CB3C
Reporter @Libranalysis
Tags:corona does-not-encrypt-but-locks Locker system destroyer


Twitter
@Libranalysis
A detailed analysis if available at: https://maxkersten.nl/binary-analysis-course/malware-analysis/corona-locker/

Intelligence


File Origin
# of uploads :
3
# of downloads :
247
Origin country :
NL NL
Mail intelligence
No data
Vendor Threat Intelligence
Gathering data
Threat name:
Win32.Trojan.Diztakun
Status:
Malicious
First seen:
2020-04-20 21:35:38 UTC
File Type:
Binary (Archive)
Extracted files:
1
AV detection:
31 of 47 (65.96%)
Threat level:
  5/5

File information


The table below shows additional information about this malware sample such as delivery method and external references.

Comments