MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 ff52fa64c50143a4e2371e71c6ad77104734fa53d3cd4e0b1d600c83c371f3a2. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


Threat unknown


Vendor detections: 2


Intelligence 2 IOCs YARA File information Comments
Download sample Add tag Delete this sample Report a False Positive

SHA256 hash: ff52fa64c50143a4e2371e71c6ad77104734fa53d3cd4e0b1d600c83c371f3a2
SHA3-384 hash: 8a91be5953f3167fb3e3ddb14e26729999ab9e101c36f227d3b0b361e2260adb038628845830ccd6218ba329d6919eb7
SHA1 hash: 83723edfb1d5de49ffb39bd7baebaade9347b796
MD5 hash: f61bb19b54061a033d65c003c16e093f
humanhash: bacon-queen-maine-bakerloo
File name:na
Download: download sample
File size:537 bytes
First seen:2024-10-12 06:23:12 UTC
Last seen:Never
File type: sh
MIME type:text/x-shellscript
ssdeep 12:VhGLt6s4l7ZmfgOA0jR3L1gKbdPOTxBnu7rV/FxUQr1:V4MsC7ZmfXAWdbhri+
TLSH T184F0C0565081FC03159A487AFA71CDF5606D5DED1A602D38B554269B14DE23D35EA088
Magika shell
Reporter abuse_ch
Tags:sh

Intelligence

File Origin
# of uploads :
1
# of downloads :
67
Origin country :
DE DE
Vendor Threat Intelligence
Verdict:
Clean
Score:
84.2%
Link:
https://cyber-fortress.com/docs/result/index.php?id=670a160966161739f881bca8
Tags:
malware
Verdict:
Unknown
Threat level:
  2.5/10
Confidence:
100%
Link:
https://www.filescan.io/uploads/670a160b21682a42569ae398/reports/367d94e1-e828-405f-91f7-d688b029e696/overview
Score:
26%
Verdict:
Benign
File Type:
SCRIPT
Link:
https://malprob.io/report/ff52fa64c50143a4e2371e71c6ad77104734fa53d3cd4e0b1d600c83c371f3a2
Detection:
n/a
Link:
https://mwdb.cert.pl/sample/ff52fa64c50143a4e2371e71c6ad77104734fa53d3cd4e0b1d600c83c371f3a2/
Detection(s):
Suspicious file
Link:
https://check.spamhaus.org/check/?searchterm=75jpuzgfafb2jyrxdzy4nllxcbdtj6st2pgu4cy5magihq3r6ora._file
Result
Malware family:
n/a
Score:
  7/10
Tags:
defense_evasion linux
Link:
https://tria.ge/reports/241012-g5396sxhld/
Behaviour
Writes file to tmp directory
File and Directory Permissions Modification
Please note that we are no longer able to provide a coverage score for Virus Total.

File information

The table below shows additional information about this malware sample such as delivery method and external references.

Web download

sh ff52fa64c50143a4e2371e71c6ad77104734fa53d3cd4e0b1d600c83c371f3a2

(this sample)

  
URLhaus
https://urlhaus.abuse.ch/url/3230703/
  
Delivery method
Distributed via web download

Comments