MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 c99ca313866d681329ece02da774831bbaef6d3f3d7fe6845e8e06ba530316e5. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


Threat unknown


Vendor detections: 9


Intelligence 9 IOCs YARA File information Comments
Download sample Add tag Delete this sample Report a False Positive

SHA256 hash: c99ca313866d681329ece02da774831bbaef6d3f3d7fe6845e8e06ba530316e5
SHA3-384 hash: 31225f15feb23b305eeb83819b7b6d418c4389c34b535a368583ab4d497378125a44c89c52c07fb10fb2ff639bd542d9
SHA1 hash: 31cbd5e0fa5c7bbc58d7ba794971f333cd4a5bdc
MD5 hash: 074beb8e2d91ae5c82569e320796cf6f
humanhash: lake-fifteen-coffee-south
File name:RequestXForXQuotation_#9505ADC.zip
Download: download sample
File size:686'909 bytes
First seen:2026-06-12 21:56:03 UTC
Last seen:2026-06-12 21:56:24 UTC
File type: zip
MIME type:application/zip
ssdeep 12288:kLZq/GAECCHRdBQZtBFMnQ29fSmmr+YgwBm1G+G:kdqpCHIunp8rL1CGj
TLSH T197E42378B76AC256764F52680E2D8C5D6D19FC5EEBE23747033FEF2853684E60248B48
Magika zip
Reporter TomU
Tags:zip

Intelligence

File Origin
# of uploads :
2
# of downloads :
129
Origin country :
CH CH
Vendor Threat Intelligence
Details
Link:
https://research.acce.ciphertechsolutions.com/results/daa2cef7-4f37-41ed-95ed-0a2cde2e05c7/
Detection(s):
SecuriteInfo.com.Trojan.GenericKD.80461237.22354.27462.UNOFFICIAL
Create hunting rule

Verdict:
Malicious
Score:
81.4%
Link:
https://cyber-fortress.com/docs/result/index.php?id=6a2c80b6a15110463ee52653
Tags:
agenttesla stration shell virus
Result
Verdict:
Malicious
File Type:
ZIP File
Link:
https://app.docguard.net/c99ca313866d681329ece02da774831bbaef6d3f3d7fe6845e8e06ba530316e5/results/dashboard
Verdict:
Unknown
Threat level:
  2.5/10
Confidence:
100%
Link:
https://www.filescan.io/uploads/6a2c809d554e843ff869d6f6/reports/a52089d2-b86b-4b13-a91e-9127021c987a/overview
Verdict:
Unknown
Link:
https://www.hybrid-analysis.com/sample/c99ca313866d681329ece02da774831bbaef6d3f3d7fe6845e8e06ba530316e5
Verdict:
Malicious
File Type:
zip
First seen:
2026-06-11T13:39:00Z UTC
Last seen:
2026-06-11T13:43:00Z UTC
Hits:
~10
Link:
https://opentip.kaspersky.com/c99ca313866d681329ece02da774831bbaef6d3f3d7fe6845e8e06ba530316e5/results?tab=lookup
Score:
42%
Verdict:
Susipicious
File Type:
ARCHIVE
Link:
https://malprob.io/report/c99ca313866d681329ece02da774831bbaef6d3f3d7fe6845e8e06ba530316e5
Gathering data
Detection:
n/a
Link:
https://mwdb.cert.pl/sample/c99ca313866d681329ece02da774831bbaef6d3f3d7fe6845e8e06ba530316e5/
Threat name:
Win32.Trojan.Kepavll
Create hunting rule
Status:
Malicious
First seen:
2026-06-11 15:27:00 UTC
File Type:
Binary (Archive)
Extracted files:
1
AV detection:
9 of 36 (25.00%)
Threat level:
  5/5
Detection(s):
Suspicious file
Link:
https://check.spamhaus.org/check/?searchterm=zgokge4gnvubgkpm4aw2o5eddo5o63j7hv76nbc6rydluuydc3sq._file
Please note that we are no longer able to provide a coverage score for Virus Total.
Threat name:
Malicious File
Score:
1.00
Link:
https://yomi.yoroi.company/submissions/c99ca313866d681329ece02da774831bbaef6d3f3d7fe6845e8e06ba530316e5

File information

The table below shows additional information about this malware sample such as delivery method and external references.

Malspam

zip c99ca313866d681329ece02da774831bbaef6d3f3d7fe6845e8e06ba530316e5

(this sample)

  
Delivery method
Distributed via e-mail attachment

Comments