MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 da25b17eacaad0e09503e7728c91ca8a07bc6ebf1a4f4fe43504b02e18331f16. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


Intelligence 1 File information 3 Yara Comments

SHA256 hash: da25b17eacaad0e09503e7728c91ca8a07bc6ebf1a4f4fe43504b02e18331f16
SHA1 hash: f45709e866654727915f2c7154e4ef3d8fb8ca84
MD5 hash: 75ebcb3e28e71dd5430813485eff8c7c
File name:MV IVY OCEAN.zip
Download: download sample
Signature AgentTesla
File size:340'506 bytes
First seen:2020-05-23 07:30:52 UTC
Last seen:Never
File type: zip
MIME type:application/zip
ssdeep 6144:Pp2GhbArT8lwFzHYViNcavV4u+ef2LESoMKglndcLb6j6pw77UHo2:B2ibA/8lUz40NcNuILvoMfZd6bgFq
TLSH A0742344FA84EBDEC8D00AC8FA7941EC81058631E6B3DBD6D543B4EA970D6D431FE456
Reporter @jarumlus
Tags:AgentTesla

Intelligence


Mail intelligence
Trap location Impact
IT Italy Low
Global High
# of uploads 1
# of downloads 19
Origin country US US
ClamAV SecuriteInfo.com.Trojan.PWS.Siggen2.49255.24603.17631.UNOFFICIAL
VirusTotal:Virustotal results 25.76%

File information


The table below shows additional information about this malware sample such as delivery method and external references.

Malspam

AgentTesla

zip da25b17eacaad0e09503e7728c91ca8a07bc6ebf1a4f4fe43504b02e18331f16

(this sample)

  
Delivery method
Distributed via e-mail attachment

Comments