MalwareBazaar Database
You are currently viewing the MalwareBazaar entry for SHA256 9c4fd5f46263393b70e5df985cf6ff335f03dc9278413fe1191348e07d741306. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.
Database Entry
GuLoader
Vendor detections: 2
| SHA256 hash: | 9c4fd5f46263393b70e5df985cf6ff335f03dc9278413fe1191348e07d741306 |
|---|---|
| SHA3-384 hash: | 85e69db4b6e82dca468ae181cbeb3789739988b27cd64bcb4dc120b987cee976b753febb12f7e3a6a9a18d3fcc85a25d |
| SHA1 hash: | a95321e1940dd4e4149af0c4c203d6b42e323298 |
| MD5 hash: | a8ccaa6385a331db9453080c38a8b2c5 |
| humanhash: | washington-purple-william-sad |
| File name: | TNT Original Invoice.ace |
| Download: | download sample |
| Signature | GuLoader |
| File size: | 31'780 bytes |
| First seen: | 2020-05-26 05:04:56 UTC |
| Last seen: | Never |
| File type: | ace |
| MIME type: | application/octet-stream |
| ssdeep | 768:BekTtxMva8T896XtxFm7+rcKB7lksFeIlGY0p:BekT7biC+4kmsFU1p |
| TLSH | F1E2F27435605C01E4DB3F6DD0C5BD335DA2C72AF6AA9FA632E21A01E6391A057BCCD1 |
| Reporter |  jarumlus |
Intelligence
File Origin
# of uploads :
1
# of downloads :
62
Origin country :
n/a
Vendor Threat Intelligence
Gathering data
Threat name:
Win32.Trojan.Fareit
Status:
Malicious
First seen:
2020-05-26 05:36:21 UTC
File Type:
Binary (Archive)
Extracted files:
7
AV detection:
19 of 31 (61.29%)
Threat level:
5/5
Please note that we are no longer able to provide a coverage score for Virus Total.
File information
The table below shows additional information about this malware sample such as delivery method and external references.
Malspam
exe Delivery method
Distributed via e-mail attachment
Comments
Login required
You need to login to in order to write a comment. Login with your abuse.ch account.