MalwareBazaar Database
You are currently viewing the MalwareBazaar entry for SHA256 48b5c86f63d6d75a143bacf4b34f558be0f69757d941e41b047a6447524e6a9f. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.
Database Entry
GuLoader
Vendor detections: 2
| SHA256 hash: | 48b5c86f63d6d75a143bacf4b34f558be0f69757d941e41b047a6447524e6a9f |
|---|---|
| SHA3-384 hash: | 5b34f55beb21382388c6f58c4f6b8ac6580444520dc38b276dc5b4718d00294e7d3298802d20360cbf8cdfa572866aa8 |
| SHA1 hash: | e0786fe8cfacbcf3a74446833ff69523c813472f |
| MD5 hash: | f5ec6ce3ab2dfa389f960ab8950f1ec0 |
| humanhash: | illinois-golf-pluto-purple |
| File name: | 837117IV_pdf.arj |
| Download: | download sample |
| Signature | GuLoader |
| File size: | 31'551 bytes |
| First seen: | 2020-05-27 04:58:02 UTC |
| Last seen: | Never |
| File type: | zip |
| MIME type: | application/zip |
| ssdeep | 768:Ww1ta0caGxPNMK1d2zYGuOZMsMM331TQNQdoypzM/M1EHwzd:DcaGH1d6SaCS1TOQKypzMU1eGd |
| TLSH | 61E2F2C6C8977558EB07D37B9E4ED0FC3C6066A7FAB5C32720C489D59501C14AADF521 |
| Reporter |  jarumlus |
| Tags: | GuLoader |
Intelligence
File Origin
# of uploads :
1
# of downloads :
63
Origin country :
n/a
Vendor Threat Intelligence
Detection(s):
Gathering data
Threat name:
Win32.Trojan.Frs
Status:
Malicious
First seen:
2020-05-27 05:35:33 UTC
File Type:
Binary (Archive)
Extracted files:
7
AV detection:
26 of 46 (56.52%)
Threat level:
5/5
Please note that we are no longer able to provide a coverage score for Virus Total.
File information
The table below shows additional information about this malware sample such as delivery method and external references.
Malspam
exe Delivery method
Distributed via e-mail attachment
Comments
Login required
You need to login to in order to write a comment. Login with your abuse.ch account.