MalwareBazaar Database
You are currently viewing the MalwareBazaar entry for SHA256 fd5759ca4b1d153ffaab45e90d98e30efb3c9d63fa313debccfce6781c7b7acb. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.
Database Entry
FormBook
Vendor detections: 2
| SHA256 hash: | fd5759ca4b1d153ffaab45e90d98e30efb3c9d63fa313debccfce6781c7b7acb |
|---|---|
| SHA3-384 hash: | 2356d0d4ae6a2c76c3f18e22ff8f1a161a8b9832dfabf0c533fe7c8530aa96d5d58d602ec45de808fb8db64ff948dd98 |
| SHA1 hash: | ed1419765e45ec7b43f04a300e91050902f6a900 |
| MD5 hash: | f987634820b662d75a7f5aecf044defc |
| humanhash: | finch-maryland-ceiling-leopard |
| File name: | 7388399377.zip |
| Download: | download sample |
| Signature | FormBook |
| File size: | 239'470 bytes |
| First seen: | 2020-05-26 05:58:30 UTC |
| Last seen: | Never |
| File type: | zip |
| MIME type: | application/zip |
| ssdeep | 6144:mYbboTfnpvLA1xM71zZ7UTJ4vwLDYuegFg4wcnlW/R:mMoLpzAHMn4TJjLc7gFgHcIR |
| TLSH | A03423FF1228523FEDCC798D7B832BC2B5720E0B2EE5065AAEE56103534539594B1E8D |
| Reporter |  jarumlus |
| Tags: | FormBook |
Intelligence
File Origin
# of uploads :
1
# of downloads :
63
Origin country :
n/a
Vendor Threat Intelligence
Gathering data
Threat name:
Win32.Trojan.Grp
Status:
Malicious
First seen:
2020-05-26 08:52:44 UTC
File Type:
Binary (Archive)
Extracted files:
8
AV detection:
19 of 47 (40.43%)
Threat level:
2/5
Please note that we are no longer able to provide a coverage score for Virus Total.
File information
The table below shows additional information about this malware sample such as delivery method and external references.
Malspam
exe Delivery method
Distributed via e-mail attachment
Comments
Login required
You need to login to in order to write a comment. Login with your abuse.ch account.