MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 e13888eed2466efaae729f16fc8e348fbabea8d7acd6db4e062f6c0930128f8f. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


Lazarus


Vendor detections: 1


Intelligence 1 IOCs YARA File information Comments
Download sample Add tag Delete this sample Report a False Positive

SHA256 hash: e13888eed2466efaae729f16fc8e348fbabea8d7acd6db4e062f6c0930128f8f
SHA3-384 hash: f4ffc797efeea35a6b5bdec5e5c43e80b9fffcdbf20b4a117db80a4d7b8d2869598f0dce47d23ee0fd2b0d957336a6f2
SHA1 hash: 4610a559b21b7e5e62925c115863e82ffa0b8977
MD5 hash: e5ff537666b387c39a406cbbb359b2ed
humanhash: salami-nineteen-mountain-jupiter
File name:e13888eed2466efaae729f16fc8e348fbabea8d7acd6db4e062f6c0930128f8f.bin
Download: download sample
Signature Lazarus
Create hunting rule
File size:227'655 bytes
First seen:2021-04-27 23:07:36 UTC
Last seen:Never
File type: pdf
MIME type:application/pdf
ssdeep 3072:ZQybbym+SeoRQBAwTpMOl4HJpWK7FqygFPhjYWRPdXDFPxlywzgeVG/jU22YpI:ZzbZRSP5lYzaFPNPdT5Hywz9EUB
TLSH B224027D2C6832DEF0A102CF632935E83AE832366BC255F5485FE5DD00B89D5B6AC476
Reporter Arkbird_SOLG
Tags:apt Lazarus maldoc

Intelligence

File Origin
# of uploads :
1
# of downloads :
556
Origin country :
n/a
Vendor Threat Intelligence
Detection:
n/a
Link:
https://mwdb.cert.pl/sample/e13888eed2466efaae729f16fc8e348fbabea8d7acd6db4e062f6c0930128f8f/
Please note that we are no longer able to provide a coverage score for Virus Total.
Threat name:
Legit
Score:
0.21
Link:
https://yomi.yoroi.company/submissions/e13888eed2466efaae729f16fc8e348fbabea8d7acd6db4e062f6c0930128f8f

File information

The table below shows additional information about this malware sample such as delivery method and external references.

  
Link
https://www.ptsecurity.com/ww-en/analytics/pt-esc-threat-intelligence/lazarus-recruitment/

Comments