MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 c246054359eb47b2dbb6768941ba69274d593fd1a6a9a7378ec4cbf2f656b2f8. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


Intelligence File information 1 Yara Comments

SHA256 hash: c246054359eb47b2dbb6768941ba69274d593fd1a6a9a7378ec4cbf2f656b2f8
SHA3-384 hash: 5341422af831e7de566325c08869f167282f812083ea7e3016ef3d924a7de2f13b48438b422aded7ef7775f0a334f049
SHA1 hash: 88f31a56ef607c05882a4e7627187c7f5c20b39c
MD5 hash: 5ffb9f94703893808675838aff352ad6
humanhash: maryland-coffee-ink-network
File name:Suivi-de-Votre-Colis-.vbs
Download: download sample
Signature n/a
File size:11'262 bytes
First seen:2020-06-30 10:52:37 UTC
Last seen:Never
File type:Visual Basic Script (vbs) vbs
MIME type:text/plain
ssdeep 192:/r8TlkLSqvpUNFu5ZMRJDqyHiK28cQUdCcKLYJPjBJPjaUeOZOHV:/rY+3pqYXMRJDqyHiK28zyCcKQPjPxs1
TLSH A232525C1110920D14609BE14C6BE48D649AA2F69BCA19FC43F3FE0C37DDDE5A8A52BF
Reporter @JAMESWT_MHT

Intelligence


Mail intelligence No data
# of uploads 1
# of downloads 24
Origin country IT IT
CAPE Sandbox Gathering data
ClamAV SecuriteInfo.com.Trojan.Siggen9.55487.7226.20098.UNOFFICIAL
CERT.PL MWDB Detection:n/a
Link: https://mwdb.cert.pl/sample/c246054359eb47b2dbb6768941ba69274d593fd1a6a9a7378ec4cbf2f656b2f8/
ReversingLabs :Status:Malicious
Threat name:Script-VBS.Trojan.Snh
First seen:2020-06-23 23:19:00 UTC
AV detection:8 of 31 (25.81%)
Threat level:   2/5
VirusTotal:Virustotal results 33.90%

File information


The table below shows additional information about this malware sample such as delivery method and external references.

Comments