MalwareBazaar Database
You are currently viewing the MalwareBazaar entry for SHA256 fcf424f709c40876665da0422399e13357a9c94c2d57230c854e14a23020ec61. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.
Database Entry
Formbook
Vendor detections: 2
| SHA256 hash: | fcf424f709c40876665da0422399e13357a9c94c2d57230c854e14a23020ec61 |
|---|---|
| SHA3-384 hash: | e63cec12e80c9bdb1b8d0eb4e6ee1d94eaa1407fe1f73a40b70b7252636a69ebe4493747e3dec036ae8a0f55e7f299b4 |
| SHA1 hash: | 9825e9ca7468ca684a992c9fad2d6abce2bfc43c |
| MD5 hash: | 0c6b2d692f232cef2e6eebebe54f542b |
| humanhash: | item-pluto-cup-timing |
| File name: | December Po034333.Z |
| Download: | download sample |
| Signature | Formbook |
| File size: | 584'362 bytes |
| First seen: | 2020-12-04 06:40:35 UTC |
| Last seen: | Never |
| File type: | z |
| MIME type: | application/x-rar |
| ssdeep | 12288:OtYqu3Z765hG25bathQgu8q4KtlOxE67sjOoaAl92uB+a:ou31kl+he8Z6MZil92u0a |
| TLSH | 35C423432E4A64BC90AF9B17163B43B35E2234D82C5F165722109DD2F2E9C7ED5E2CDA |
| Reporter |  cocaman |
| Tags: | z |
cocaman
Malicious email (T1566.001)From: "Raffizas<info@labelingmachine.in>" (likely spoofed)
Received: "from labelingmachine.in (unknown [92.118.190.190]) "
Date: "4 Dec 2020 02:02:19 +0100"
Subject: "DECEMBER PO9872"
Attachment: "December Po034333.Z"
Intelligence
File Origin
# of uploads :
1
# of downloads :
149
Origin country :
n/a
Vendor Threat Intelligence
Result
Gathering data
Detection(s):
Suspicious file
Please note that we are no longer able to provide a coverage score for Virus Total.
Threat name:
Legit
Score:
0.00
File information
The table below shows additional information about this malware sample such as delivery method and external references.
Malspam
exe Delivery method
Distributed via e-mail attachment
Comments
Login required
You need to login to in order to write a comment. Login with your abuse.ch account.