MalwareBazaar Database
You are currently viewing the MalwareBazaar entry for SHA256 b4bab12e354a7357670eb67ca2a2c768e753580740675a8476130db32f53016b. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.
Database Entry
BitRAT
Vendor detections: 2
| SHA256 hash: | b4bab12e354a7357670eb67ca2a2c768e753580740675a8476130db32f53016b |
|---|---|
| SHA3-384 hash: | e06040c8baed07cb9189b93406b1d19e672eac9351896a82bf6298cfe9913062b75ad03dc7f225d19cd83efb868e0cd3 |
| SHA1 hash: | 53cdcd377f2a7bece22d1d91f8c0bd1f710a3ea3 |
| MD5 hash: | 77884c36c34dc80c1548edc435c865ee |
| humanhash: | skylark-aspen-batman-sodium |
| File name: | Receipt+00034587583883.rar |
| Download: | download sample |
| Signature | BitRAT |
| File size: | 739'051 bytes |
| First seen: | 2020-10-12 19:15:55 UTC |
| Last seen: | Never |
| File type: | rar |
| MIME type: | application/x-rar |
| ssdeep | 12288:FwhNLRxTpU4SOhFT4LR/0y/PvwWZRq0IYCAcdQ97UY6c3anOfj/8UZu+dxsc8f4+:CxTWOhKLht/PrRq0zTcYUYv3JuEOwi |
| TLSH | C9F423A2A65C17EC4617140DD0C8D36247E3AD37D326D864398A1E36DE2C93F1A49BBF |
| Reporter |  abuse_ch |
| Tags: | BitRAT rar |
abuse_ch
Malspam distributing unidentified malware:HELO: slot0.receiptx.xyz
Sending IP: 104.168.201.199
From: Joy Nelson <postmaster@receiptx.xyz>
Subject: Credit Card Payment Receipt
Attachment: Receipt+00034587583883.rar (contains "Receipt+00034587583883.exe")
Intelligence
File Origin
# of uploads :
1
# of downloads :
114
Origin country :
n/a
Vendor Threat Intelligence
Detection(s):
Suspicious file
Please note that we are no longer able to provide a coverage score for Virus Total.
Threat name:
Legit
Score:
0.00
File information
The table below shows additional information about this malware sample such as delivery method and external references.
Malspam
exe Delivery method
Distributed via e-mail attachment
Comments
Login required
You need to login to in order to write a comment. Login with your abuse.ch account.