MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 b1bbfa891537ee3acffe84ec8a7ebd4537170218372be4727d74c6c31ee4a546. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


Intelligence File information 9 Yara 1 Comments

SHA256 hash: b1bbfa891537ee3acffe84ec8a7ebd4537170218372be4727d74c6c31ee4a546
SHA1 hash: 5e94a2f8fdfef1c75298e9b110419c7dc4075bbd
MD5 hash: 471c9316ed12a0bd184ac4b4f58a6c46
File name:IMG_619000000142331_DE12008.scr
Download: download sample
Signature MassLogger
File size:750'080 bytes
First seen:2020-05-22 12:58:16 UTC
Last seen:Never
File type:Executable exe
MIME type:application/x-dosexec
imphash f34d5f2d4577ed6d9ceec516c1f5a744
ssdeep 12288:OLey1VOHHmZjt0NcHSYLilUDwdsowwQrKtEvSyzB+eYWv85v3qKyJKxFA60q6g8L:Eey1VOnqJgIvuqDGsjwQmG3zB+hCMrwD
TLSH CBF4026671EE130ADB7ABFF10BE4785E4776B43B1A7AF1391D8222D64631B009941B33
Reporter Anonymous
Tags:MassLogger

Intelligence


Mail intelligence No data
# of uploads 1
# of downloads 26
Origin country PL PL
ClamAV SecuriteInfo.com.Mal.Generic-S.3020.763.UNOFFICIAL
VirusTotal:Virustotal results 23.61%

Yara Signatures


Rule name:masslogger_gcch
Author:govcert_ch

File information


The table below shows additional information about this malware sample such as delivery method and external references.

10746496cee773627a4545c30eaae6901591fa60d88a921d16d8eb71b0832e3e

MassLogger

Executable exe b1bbfa891537ee3acffe84ec8a7ebd4537170218372be4727d74c6c31ee4a546

(this sample)

Comments