MalwareBazaar Database
You are currently viewing the MalwareBazaar entry for SHA256 d3648e54c14054add681c83d66ff71529d17d87d535280fd266ebdb4656acadd. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.
Database Entry
MassLogger
Vendor detections: 4
| SHA256 hash: | d3648e54c14054add681c83d66ff71529d17d87d535280fd266ebdb4656acadd |
|---|---|
| SHA3-384 hash: | e1a9eba877230d1f4430ad44c25870c4ad420189772fd29c14d385c7b61aaa2fcd74ffab29617ac751fa8528a705424f |
| SHA1 hash: | cf7db827e35cb616c2f0e37d601f93509e95f3bf |
| MD5 hash: | aa12a2e132898a4f2432a1f02e0e12df |
| humanhash: | beryllium-blue-georgia-happy |
| File name: | Halkbank,pdf.z |
| Download: | download sample |
| Signature | MassLogger |
| File size: | 923'342 bytes |
| First seen: | 2020-09-11 11:18:10 UTC |
| Last seen: | Never |
| File type: | zip |
| MIME type: | application/zip |
| ssdeep | 24576:SZHpMH/ZX9P2ne9+1RDe5U4jj2l7iAKpTONcZ:OHpIltpU4jY76pCE |
| TLSH | EF153392B1A64E44FFB163083A222206469D75AB8505E55D5B27FD3CC0D26B2FEFB10B |
| Reporter |  GovCERT_CH |
| Tags: | MassLogger |
Intelligence
File Origin
# of uploads :
1
# of downloads :
110
Origin country :
n/a
Vendor Threat Intelligence
Detection(s):
Threat name:
ByteCode-MSIL.Trojan.Kryptik
Status:
Malicious
First seen:
2020-09-11 03:55:36 UTC
AV detection:
6 of 48 (12.50%)
Threat level:
5/5
Detection(s):
Malicious file
Please note that we are no longer able to provide a coverage score for Virus Total.
Threat name:
Kryptik
Score:
1.00
File information
The table below shows additional information about this malware sample such as delivery method and external references.
Malspam
exe Delivery method
Distributed via e-mail attachment
Comments
Login required
You need to login to in order to write a comment. Login with your abuse.ch account.