MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 d12a61d9bb154d36e3e921eb740b5e33ffd4b40c7db36d5f5fd8af80e1165d67. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


Threat unknown


Vendor detections: 3


Intelligence 3 IOCs YARA File information Comments
Download sample Add tag Delete this sample Report a False Positive

SHA256 hash: d12a61d9bb154d36e3e921eb740b5e33ffd4b40c7db36d5f5fd8af80e1165d67
SHA3-384 hash: 6b5d9d762366bea6207d4eb03dae35bb0d42328eba3dd42b90ad33303657146da30e9683bbcdeb95c44a9ef6b890e9c3
SHA1 hash: 2dbec610bf4355cca1d1df85e95ae95c56509cee
MD5 hash: 68b3e398d10ef529407915c8e0b4a370
humanhash: music-spring-kansas-ink
File name:MLC Suite June 23 2019.zip
Download: download sample
File size:1'822'383 bytes
First seen:2020-08-06 09:35:49 UTC
Last seen:Never
File type: zip
MIME type:application/zip
ssdeep 49152:RgeOVn7wuJgx6VFckduuPDyCuw99h48+LrH7drjNG:qJgYEO+SFH+3H7dXY
TLSH D08533F922C2F51FC6035092B755C72EB170E2BD267D20F31ADA84A294E96D6700FB76
Reporter abuse_ch
Tags:Outlook zip


Avatar
abuse_ch
Malspam distributing unidentified malware:

HELO: EUR04-DB3-obe.outbound.protection.outlook.com
Sending IP: 40.92.74.108
From: Michael Zinkl <mzinkl@outlook.de>
Subject: Fwd: test
Attachment: MLC Suite June 23 2019.zip (contains "setup.exe")

Intelligence

File Origin
# of uploads :
1
# of downloads :
58
Origin country :
n/a
Vendor Threat Intelligence
Detection(s):
PUA.Win.Downloader.Aiis-6803892-0
Create hunting rule

Detection:
n/a
Link:
https://mwdb.cert.pl/sample/d12a61d9bb154d36e3e921eb740b5e33ffd4b40c7db36d5f5fd8af80e1165d67/
Detection(s):
Suspicious file
Link:
https://check.spamhaus.org/check/?searchterm=2evgdwn3cvgtny7jehvxic26gp75jnampwzw2x273cxybyiwlvtq._file
Please note that we are no longer able to provide a coverage score for Virus Total.
Threat name:
Malicious File
Score:
1.00
Link:
https://yomi.yoroi.company/submissions/d12a61d9bb154d36e3e921eb740b5e33ffd4b40c7db36d5f5fd8af80e1165d67

File information

The table below shows additional information about this malware sample such as delivery method and external references.

Malspam

zip d12a61d9bb154d36e3e921eb740b5e33ffd4b40c7db36d5f5fd8af80e1165d67

(this sample)

Executable exe c0d2ceba24c17b069ad6198e0ec0e041e6a39115172d52126d414d5ec0b00487

  
Dropping
MD5 f6b04183d0a33551b69c70deac8f2efc
  
Delivery method
Distributed via e-mail attachment
  
Dropping
SHA256 c0d2ceba24c17b069ad6198e0ec0e041e6a39115172d52126d414d5ec0b00487

Comments