MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 e305c08cff50e6ca0cfec6c6bf9aee235c4d6e83cfad689cf138d493952fdc75. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


Threat unknown


Vendor detections: 4


Intelligence 4 IOCs YARA File information Comments
Download sample Add tag Delete this sample Report a False Positive

SHA256 hash: e305c08cff50e6ca0cfec6c6bf9aee235c4d6e83cfad689cf138d493952fdc75
SHA3-384 hash: 5c519b065fba349ec71732a084d5fbb3cf84a7cc4f7fb5a1385c4639ecdf1ac5c66d5cc88080aa061faa759d4faa23a9
SHA1 hash: 8d5bd9e2a96f027db43a655ad4b2199b6f4c3702
MD5 hash: e4ed9a578bc92befbce95c4c3f77e386
humanhash: cold-bravo-jig-nitrogen
File name:Portbet88.apk
Download: download sample
File size:5'822'350 bytes
First seen:2025-12-04 20:09:10 UTC
Last seen:Never
File type: apk
MIME type:application/zip
ssdeep 98304:TPzllroTwrYpKjofsros5OrsbxYfc0D1BWoz5qPvrEZC0vPqmYZnXrfLR/mpCltH:TL0KMfyaIbaciAFvrEZpXqmY9XrF/mpm
TLSH T19346F1C7F7D8A92FC877507289BE52B141874C028A839F836D18760C69BB5D46F5AFC8
TrID 50.0% (.APK) Android Package (27000/1/5)
23.1% (.VYM) VYM Mind Map (12500/1/3)
19.4% (.SH3D) Sweet Home 3D Design (generic) (10500/1/3)
7.4% (.ZIP) ZIP compressed archive (4000/1)
Magika apk
Reporter juroots
Tags:apk

Intelligence

File Origin
# of uploads :
1
# of downloads :
120
Origin country :
CZ CZ
Vendor Threat Intelligence
No detections
Verdict:
Unknown
Threat level:
  2.5/10
Confidence:
100%
Tags:
base64 crypto evasive expand fingerprint lolbin signed
Link:
https://www.filescan.io/uploads/6931ea7fff25e40750d3e508/reports/e4eeeea3-c3c9-4a62-a94f-854f6925128c/overview
Result
Link:
https://incinerator.cloud/#/public/report/e4ed9a578bc92befbce95c4c3f77e386/detail
Application Permissions
full Internet access (INTERNET)
Result
Verdict:
UNKNOWN
Link:
https://labs.inquest.net/dfi/sha256/e305c08cff50e6ca0cfec6c6bf9aee235c4d6e83cfad689cf138d493952fdc75
Verdict:
Unknown
File Type:
apk
First seen:
2024-04-06T02:16:00Z UTC
Last seen:
2025-12-04T19:15:00Z UTC
Hits:
~100
Link:
https://opentip.kaspersky.com/e305c08cff50e6ca0cfec6c6bf9aee235c4d6e83cfad689cf138d493952fdc75/results?tab=lookup
Score:
98%
Verdict:
Malware
File Type:
APK
Link:
https://malprob.io/report/e305c08cff50e6ca0cfec6c6bf9aee235c4d6e83cfad689cf138d493952fdc75
Detection:
n/a
Link:
https://mwdb.cert.pl/sample/e305c08cff50e6ca0cfec6c6bf9aee235c4d6e83cfad689cf138d493952fdc75/
Detection(s):
Suspicious file
Link:
https://check.spamhaus.org/check/?searchterm=4mc4bdh7kdtmudh6y3dl7gxoenoe23udz6wwrhhrhdkjhfjp3r2q._file
Verdict:
Unknown
Tags:
n/a
YARA:
n/a
Link:
https://app.threat.zone/submission/d02ab781-4979-467e-b7b0-c7d81f03661c
Please note that we are no longer able to provide a coverage score for Virus Total.
Threat name:
Legit
Score:
0.05
Link:
https://yomi.yoroi.company/submissions/e305c08cff50e6ca0cfec6c6bf9aee235c4d6e83cfad689cf138d493952fdc75

File information

The table below shows additional information about this malware sample such as delivery method and external references.

Web download

apk e305c08cff50e6ca0cfec6c6bf9aee235c4d6e83cfad689cf138d493952fdc75

(this sample)

  
URLhaus
https://urlhaus.abuse.ch/url/3725482/
  
Delivery method
Distributed via web download
  
URLhaus
https://urlhaus.abuse.ch/url/3725493/

Comments