MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 a6c1e44de59c65df02ffd162f73db244173679bfdd4e8164bada4cc55ac596c7. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


Intelligence 6 File information Yara Comments

SHA256 hash: a6c1e44de59c65df02ffd162f73db244173679bfdd4e8164bada4cc55ac596c7
SHA3-384 hash: f2de77d84589308d79b7bf0f8634cad0e9b2efa92744c477a867f046fdcb5cf7d47d6d18bf777f4d1d3c46e5339ebcc0
SHA1 hash: 468d5e81490cb8e02afd95dbefb37bba672f330c
MD5 hash: d00553489b213f6672702e555aaa4876
humanhash: august-king-monkey-coffee
File name:mat.exe
Download: download sample
Signature Matiex
File size:79'428 bytes
First seen:2020-07-31 16:33:43 UTC
Last seen:2020-07-31 17:40:50 UTC
File type:Executable exe
MIME type:application/x-dosexec
imphash f34d5f2d4577ed6d9ceec516c1f5a744
ssdeep 1536:58P2LsdEjC4r7LDFP1kPkaukDCg4HxpRF15ROYNSVDlXdzNPl6VLB7lDJjFExLBK:580CEZr7N1kPk7kDaRpRF15RNNSVDlXA
TLSH AA73D5FE23878535CADE8BFD4AE0925FE3F8F2454457EE4B3D46509A0C9660C02866E7
Reporter @James_inthe_box
Tags:exe Matiex

Intelligence


File Origin
# of uploads :
2
# of downloads :
47
Origin country :
FR FR
Mail intelligence
No data
Vendor Threat Intelligence
Result
Threat name:
Matiex
Detection:
malicious
Classification:
troj
Score:
52 / 100
Signature
Machine Learning detection for sample
Yara detected Matiex Keylogger
Behaviour
Behavior Graph:
Threat name:
ByteCode-MSIL.Adware.RedCap
Status:
Malicious
First seen:
2020-07-31 16:33:37 UTC
AV detection:
14 of 31 (45.16%)
Threat level
  1/5
Result
Malware family:
n/a
Score:
  7/10
Tags:
spyware
Behaviour
Reads user/profile data of web browsers
Reads user/profile data of local email clients
Reads user/profile data of web browsers
Reads user/profile data of local email clients
Threat name:
Malicious File
Score:
1.00

File information


The table below shows additional information about this malware sample such as delivery method and external references.

  
Delivery method
Other

Comments