MalwareBazaar Database
You are currently viewing the MalwareBazaar entry for SHA256 55489e0c97b7c267b6cea0906d0690612cd1dde8721ebb8b28b5a46e8596ef56. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.
Database Entry
Loki
Vendor detections: 3
| SHA256 hash: | 55489e0c97b7c267b6cea0906d0690612cd1dde8721ebb8b28b5a46e8596ef56 |
|---|---|
| SHA3-384 hash: | ae732c53a1289f2bcc35c55c8273e726f076328dd1087193b91c1063c2cf07be7cd18f148b654eb912f3c43e7769cec5 |
| SHA1 hash: | 49274e039543965978834774212b20093166243c |
| MD5 hash: | a31797ede833009e13ab942547c14cbe |
| humanhash: | artist-spring-mountain-yellow |
| File name: | ES_MSC-20024169(BL DRAFT) .pdf.gz |
| Download: | download sample |
| Signature | Loki |
| File size: | 383'758 bytes |
| First seen: | 2020-11-13 16:46:11 UTC |
| Last seen: | Never |
| File type: | gz |
| MIME type: | application/gzip |
| ssdeep | 6144:37lca7etD5boCvLLB4HqXFhsaSODtkqoT3XuzqIQksScqzr360xFgatpoLNUl:3qZtoCxTXgc7YjZcr3NgeOhE |
| TLSH | 408423E62D205021DA00603AEBD7F569E83BCD45887F54ABA45DF354FBC2602DFAF0A0 |
| Reporter |  fabjer |
| Tags: | archive |
Intelligence
File Origin
# of uploads :
1
# of downloads :
62
Origin country :
n/a
Vendor Threat Intelligence
Result
Gathering data
Threat name:
Win32.Trojan.LokiBot
Status:
Malicious
First seen:
2020-11-13 14:23:07 UTC
AV detection:
22 of 48 (45.83%)
Threat level:
5/5
Detection(s):
Suspicious file
Please note that we are no longer able to provide a coverage score for Virus Total.
File information
The table below shows additional information about this malware sample such as delivery method and external references.
Malspam
exe Delivery method
Distributed via e-mail attachment
Comments
Login required
You need to login to in order to write a comment. Login with your abuse.ch account.