MalwareBazaar Database
You are currently viewing the MalwareBazaar entry for SHA256 c3bd3dae120bc0c003a84ad1e7923676d39560729a5c760d30a3c1439992acfc. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.
Database Entry
Formbook
Vendor detections: 4
| SHA256 hash: | c3bd3dae120bc0c003a84ad1e7923676d39560729a5c760d30a3c1439992acfc |
|---|---|
| SHA3-384 hash: | 5ab5863240b2faf008a53a1c0d6232734ca4f168201b4a2291006252586df7c4c4e2f88b48ab6adaa710138541a03f52 |
| SHA1 hash: | 9ea6757010040dd6d202159c3947467e2235770c |
| MD5 hash: | e9912575612e446d76b299d39acd3c8f |
| humanhash: | white-angel-utah-florida |
| File name: | NEW ORDER - VOLVO HK HKPO2102-13561,pdf.zip |
| Download: | download sample |
| Signature | Formbook |
| File size: | 250'836 bytes |
| First seen: | 2021-02-16 08:55:32 UTC |
| Last seen: | 2021-02-17 18:08:33 UTC |
| File type: | zip |
| MIME type: | application/zip |
| ssdeep | 6144:OM5Hvpr2M5Gpq8Bkzqs598lD8lmCo0+WbFn14L6bqdTiXXS0HX5JCb:7J8M5Gpq8BkzRvEDKpoaN123+735JW |
| TLSH | 3A34233621D814143E1E895708901ADAAD4ED0B652B993D8700EFEDB221DD5DEFBCCCB |
| Reporter |  GovCERT_CH |
Intelligence
File Origin
# of uploads :
3
# of downloads :
92
Origin country :
n/a
Vendor Threat Intelligence
Threat name:
Win32.Trojan.FormBook
Status:
Malicious
First seen:
2021-02-16 08:39:17 UTC
AV detection:
22 of 48 (45.83%)
Threat level:
5/5
Detection(s):
Suspicious file
Please note that we are no longer able to provide a coverage score for Virus Total.
Threat name:
Suspicious File
Score:
0.52
File information
The table below shows additional information about this malware sample such as delivery method and external references.
Malspam
exe Delivery method
Distributed via e-mail attachment
Comments
Login required
You need to login to in order to write a comment. Login with your abuse.ch account.