MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 8f8b7c084307b2c551365b9e11eda89536b460126b22019141521854454ec953. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


Intelligence 2 File information 3 Yara Comments

SHA256 hash: 8f8b7c084307b2c551365b9e11eda89536b460126b22019141521854454ec953
SHA3-384 hash: 3c3ad75b2de939ee4616358b093d3322964e3fb54fcabef095a47a74988a89f8193c6033acbfce224fe5d2f3031a36d3
SHA1 hash: 2f8c632a52cd51b7aaefab0b6dc444c2a88b64c3
MD5 hash: bdb7de6bf307ab5a7cba3dee2dbb4f0f
humanhash: fifteen-india-cold-solar
File name:Dhl Consignment Details_pdf.gz
Download: download sample
Signature Loki
File size:109'288 bytes
First seen:2020-06-30 08:41:50 UTC
Last seen:Never
File type: zip
MIME type:application/zip
ssdeep 1536:UXZGu24GCMAt1SkEzhfTyGG+s7lTPqqXH/+3y2QEncmpkIkFheVjQYdXBYLSenbm:Ujp3Chfo+s7lTPqq323y2NK8V5OLSKS
TLSH 84B3122075720C318C8539DEA174FE3E59C81C4DAB5D16FFB7A2C6F76286405AC3A92E
Reporter @jarumlus
Tags:Loki

Intelligence


Mail intelligence
Trap location Impact
Global Low
CH Switzerland Low
# of uploads 1
# of downloads 27
Origin country FR FR
ClamAV Sanesecurity.Malware.25815.ZipHeur.BadExt.UNOFFICIAL
CERT.PL MWDB Detection:n/a
Link: https://mwdb.cert.pl/sample/8f8b7c084307b2c551365b9e11eda89536b460126b22019141521854454ec953/
ReversingLabs :Status:Malicious
Threat name:ByteCode-MSIL.Trojan.Androm
First seen:2020-06-29 23:49:08 UTC
AV detection:22 of 48 (45.83%)
Threat level:   2/5
Spamhaus Hash Blocklist :Malicious file
VirusTotal:Virustotal results 31.25%

File information


The table below shows additional information about this malware sample such as delivery method and external references.

Malspam

Loki

zip 8f8b7c084307b2c551365b9e11eda89536b460126b22019141521854454ec953

(this sample)

  
Delivery method
Distributed via e-mail attachment

Comments