MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 9ffd000cdc8d24257cb6b4c9239080f0faf0061ccf3af875b7561df77d702ad7. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


Threat unknown


Vendor detections: 8


Intelligence 8 IOCs YARA File information Comments
Download sample Add tag Delete this sample Report a False Positive

SHA256 hash: 9ffd000cdc8d24257cb6b4c9239080f0faf0061ccf3af875b7561df77d702ad7
SHA3-384 hash: b97f3fa51c8e4ce4ad478a3d830e8a6c9c178b91384e6060744a51b470aab60542a2914111326ceb3dc127d3d84b042e
SHA1 hash: ffc0e0b33bd9138f29cc23cd9372bc15c97bf700
MD5 hash: 0c4f4ff39f7fc1dc66e642548ccb98f6
humanhash: emma-lactose-item-xray
File name:m
Download: download sample
File size:2'246 bytes
First seen:2024-10-17 18:31:45 UTC
Last seen:Never
File type: sh
MIME type:text/plain
ssdeep 24:s6PTZoTZy5TZAIHksovB9skwRoxVXMksoXW5X0AksobdZIksoYh2Ekc:s6TZ8ZiZ1Hks/k6HksHks3ksXkc
TLSH T19E4129CA385C40B28E58C9EBF212CDBE700E07C9B9E5CF5C9F4580DBE969A447206E95
Magika shell
Reporter abuse_ch
Tags:sh

Intelligence

File Origin
# of uploads :
1
# of downloads :
68
Origin country :
DE DE
Vendor Threat Intelligence
Verdict:
Malicious
Score:
93.3%
Link:
https://cyber-fortress.com/docs/result/index.php?id=67122d3334f884d15c8ca50d
Tags:
Mirai
Verdict:
Malicious
Threat level:
  10/10
Confidence:
100%
Link:
https://www.filescan.io/uploads/6711582b7f0507a8d24191c9/reports/68c9fead-5da5-4a6d-84fc-ad595a5a911c/overview
Verdict:
Malicious
Labled as:
Trojan.Agent
Link:
https://www.hybrid-analysis.com/sample/9ffd000cdc8d24257cb6b4c9239080f0faf0061ccf3af875b7561df77d702ad7
Result
Verdict:
MALICIOUS
Score:
27%
Verdict:
Benign
File Type:
SCRIPT
Link:
https://malprob.io/report/9ffd000cdc8d24257cb6b4c9239080f0faf0061ccf3af875b7561df77d702ad7
Detection:
n/a
Link:
https://mwdb.cert.pl/sample/9ffd000cdc8d24257cb6b4c9239080f0faf0061ccf3af875b7561df77d702ad7/
Threat name:
Win32.Trojan.Generic
Create hunting rule
Status:
Suspicious
First seen:
2024-10-17 19:24:10 UTC
AV detection:
6 of 24 (25.00%)
Threat level:
  5/5
Detection(s):
Suspicious file
Link:
https://check.spamhaus.org/check/?searchterm=t76qadg4rusck7fwwtesheea6d5pabq4z45pq5nxkyo7o7lqfllq._file
Please note that we are no longer able to provide a coverage score for Virus Total.
Threat name:
Malicious File
Score:
1.00
Link:
https://yomi.yoroi.company/submissions/9ffd000cdc8d24257cb6b4c9239080f0faf0061ccf3af875b7561df77d702ad7

File information

The table below shows additional information about this malware sample such as delivery method and external references.

Web download

sh 9ffd000cdc8d24257cb6b4c9239080f0faf0061ccf3af875b7561df77d702ad7

(this sample)

  
URLhaus
https://urlhaus.abuse.ch/url/3239770/
  
Delivery method
Distributed via web download

Comments