MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 ad7fdf82c9fce45568ef82521a413442f3657c6e65e4659a16166f0102649857. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry



Threat unknown


Vendor detections: 2


Intelligence 2 IOCs YARA File information Comments

SHA256 hash: ad7fdf82c9fce45568ef82521a413442f3657c6e65e4659a16166f0102649857
SHA3-384 hash: 60c6672fb3988c77e067cc750e08bf330cc1dfc46127b01e1dd992d84c5e6063308957d1298e9779cf95597817654a91
SHA1 hash: faba949841fd8aa523929d296ac6584fa1a7fc44
MD5 hash: 7bd8131fe11e980ce4e79c37562cb161
humanhash: asparagus-lion-wyoming-sink
File name:firefox-keylogger-plugin.zip
Download: download sample
Signature n/a
File size:21'169 bytes
First seen:2020-03-19 17:29:46 UTC
Last seen:Never
File type: zip
MIME type:application/zip
ssdeep 384:cZu6VRO0rOxVp5+4GJY4ldJ/BJivhKrFQ8JlUkSEOja/clQAGJn:cZuRVp5+4AdJ/Bu8JlUkzKG5
TLSH 2292E0B08951619CC29FCFBCAAFA0F23CA564A01311CEA0F4E6814E25F5D7D24F573A9
Reporter @Libranalysis
Tags:browser firefox keylogger plug-in plugin


Twitter
@Libranalysis
A malicious Firefox plug-in that logs form data. The analysis of the plug-in can be found here: https://maxkersten.nl/binary-analysis-course/binary-types/browser-plug-in/

Intelligence


File Origin
# of uploads :
1
# of downloads :
92
Origin country :
NL NL
Mail intelligence
No data
Vendor Threat Intelligence
Gathering data

File information


The table below shows additional information about this malware sample such as delivery method and external references.

Web download

zip ad7fdf82c9fce45568ef82521a413442f3657c6e65e4659a16166f0102649857

(this sample)

  
Delivery method
Distributed via web download

Comments