MalwareBazaar Database
You are currently viewing the MalwareBazaar entry for SHA256 68926a6ece944779e9d78d92449353506796bd5c5f4c037c1e383104c015206c. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.
Database Entry
GuLoader
Vendor detections: 3
| SHA256 hash: | 68926a6ece944779e9d78d92449353506796bd5c5f4c037c1e383104c015206c |
|---|---|
| SHA3-384 hash: | 4aae4a72b7a5c6d741ec2efc09c03a47b35c7daad8dc1ab08c8dc84a589e140768588d8847a9f7aedf73d2fd5845c81b |
| SHA1 hash: | 7d07f038e5d1326d811b51b825f42ba83b5c85de |
| MD5 hash: | e156b188f5f40d0c11fb11ae0fdce3e2 |
| humanhash: | nevada-william-london-mike |
| File name: | Supplier-Face Mask Forehead Thermometer.pdf.gz |
| Download: | download sample |
| Signature | GuLoader |
| File size: | 40'111 bytes |
| First seen: | 2020-03-25 16:01:08 UTC |
| Last seen: | Never |
| File type: | gz |
| MIME type: | application/x-rar |
| ssdeep | 768:bOHcIsUtcWc1xmD0hH9ficzlfpmS0iIr7Fc0MzqULP/ikeiYqCoFV:cnQ2QTiafpmSwr6vZPa9ur |
| TLSH | 5103F2DBE1700E37E803257624A21B19961F6C16884DD154693852FED06EFAF18CAFDE |
| Reporter |  cocaman |
| Tags: | COVID-19 GuLoader gz |
Intelligence
File Origin
# of uploads :
1
# of downloads :
82
Origin country :
n/a
Vendor Threat Intelligence
Gathering data
Threat name:
Win32.Trojan.Fareit
Status:
Malicious
First seen:
2020-03-25 18:37:17 UTC
File Type:
Binary (Archive)
Extracted files:
7
AV detection:
11 of 45 (24.44%)
Threat level:
2/5
Detection(s):
Suspicious file
Please note that we are no longer able to provide a coverage score for Virus Total.
File information
The table below shows additional information about this malware sample such as delivery method and external references.
Malspam
exe Delivery method
Distributed via e-mail attachment
Comments
Login required
You need to login to in order to write a comment. Login with your abuse.ch account.