MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 a4be34ffbd5bac0ad7c472ba17a74c7b04615f909913e770c4115cfcf09c04f7. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


Intelligence File information 1 Yara Comments

SHA256 hash: a4be34ffbd5bac0ad7c472ba17a74c7b04615f909913e770c4115cfcf09c04f7
SHA3-384 hash: 8dae5998b82fbb0b62d0f416862defb29c4da850039227c5e95d8bd3a18c0f6dc3e08a78c2b8a29d1fb851995d8fce3e
SHA1 hash: 0a661003f289a12118f3295dcb914b51ee557ff1
MD5 hash: d94186b16b80e12493e6004bead8e2d6
humanhash: monkey-helium-quiet-vegan
File name:75246_5217_bybb.zip
Download: download sample
Signature n/a
File size:264'020 bytes
First seen:2020-06-30 09:25:28 UTC
Last seen:Never
File type: zip
MIME type:application/zip
ssdeep 6144:HlY3B90t2zqSAhLoouvfJnr9qllf7H25bb/JrFRE5P8Jkyo3m:F5t2ONLoHZr9qllf72Zx05POAm
TLSH D044222CFD41C8F81C6796464CBE1DE5BF1EDBEFA5259A906D3B2ED09B04047E61028D
Reporter @jarumlus

Intelligence


Mail intelligence No data
# of uploads 1
# of downloads 28
Origin country US US
ClamAV SecuriteInfo.com.PUA.VBS-in-ZIP.UNOFFICIAL
CERT.PL MWDB Detection:n/a
Link: https://mwdb.cert.pl/sample/a4be34ffbd5bac0ad7c472ba17a74c7b04615f909913e770c4115cfcf09c04f7/
ReversingLabs :Status:Malicious
Threat name:Script-VBS.Trojan.Kryptik
First seen:2020-06-30 09:27:03 UTC
AV detection:14 of 48 (29.17%)
Threat level:   2/5
VirusTotal:No data

File information


The table below shows additional information about this malware sample such as delivery method and external references.

Malspam

zip a4be34ffbd5bac0ad7c472ba17a74c7b04615f909913e770c4115cfcf09c04f7

(this sample)

  
Delivery method
Distributed via e-mail attachment

Comments