MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 189da5325761dfed0449856567ee7a196607834362901279c7d1e613d7b72aba. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry

Intelligence 1 File information 1 Yara Comments

SHA256 hash: 189da5325761dfed0449856567ee7a196607834362901279c7d1e613d7b72aba
SHA1 hash: 0bdcbaf2ebd86daa24e173b2847001561c619d86
MD5 hash: fc537934a0ca6c72269f09636fdf2cb9
File name:Requisition.exe
Download: download sample
Signature GuLoader
File size:192'512 bytes
First seen:2020-05-23 15:04:39 UTC
Last seen:Never
File type:Executable exe
MIME type:application/x-dosexec
imphash d741aa25deb05c18c857493e5d0963cd
ssdeep 1536:Jq610iQVdfAT5tt3QOQrLIdT3+qzIqZSWAbg9YBcr5n7jf+zpHb89kGRrSQJZnjS:s6eXVNaQAt+qgWAb4YSVf+EhjcSy
TLSH 03143C04FA90B42BDEF68AFD46E25AF4A0D96CB56904DB037504BF2F35F1889B125933
Reporter @Racco42
Tags:exe GuLoader


Mail intelligence
Trap location Impact
Global Low
# of uploads 1
# of downloads 22
Origin country FR FR
ClamAV Win.Malware.Generic-7842022-0
VirusTotal:Virustotal results 69.44%

File information

The table below shows additional information about this malware sample such as delivery method and external references.



Executable exe 189da5325761dfed0449856567ee7a196607834362901279c7d1e613d7b72aba

(this sample)

Delivery method
Distributed via e-mail attachment