MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 87445f8cbb1734e7759489531d85ebefb57c5fcf145ba9d279be780d130acec7. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


Threat unknown


Vendor detections: 6


Intelligence 6 IOCs YARA File information Comments
Download sample Add tag Delete this sample Report a False Positive

SHA256 hash: 87445f8cbb1734e7759489531d85ebefb57c5fcf145ba9d279be780d130acec7
SHA3-384 hash: 6efb1f8bd369ca6cbd78ed1261f368a2da96a469baaa6515ea61d72908959dc8f47f24e1fb35dc97b61d435b41d28a10
SHA1 hash: dd99b81d989152b5c3da4e01e4bc7da88e4c87dd
MD5 hash: d58598b7331bff9f56369aa3a51af713
humanhash: kansas-oregon-july-ohio
File name:game.dmg
Download: download sample
File size:458'929 bytes
First seen:2026-02-04 12:53:44 UTC
Last seen:Never
File type:
MIME type:application/zlib
ssdeep 3072:N6/2x6A99US8N3aKOEv3OlGL1S99fAsfXoXMhKyD7GKF6SXtifUkz:N66hgxz3POYEAsh8FSX8c
TLSH T1B8A4F737BE695C84DF941EFE8231D5958DC9E9D391A6C0E1BC400941BEE9BC4F9183A3
Magika dmg
Reporter l0psec
Tags:dmg infostealer macOS xor

Intelligence

File Origin
# of uploads :
1
# of downloads :
34
Origin country :
US US
Vendor Threat Intelligence
No detections
Verdict:
Clean
Score:
99.9%
Link:
https://cyber-fortress.com/docs/result/index.php?id=698341796b1af47db72ccc2b
Tags:
n/a
Verdict:
Suspicious
Labled as:
OSX/AVI.Stealer
Link:
https://www.hybrid-analysis.com/sample/87445f8cbb1734e7759489531d85ebefb57c5fcf145ba9d279be780d130acec7
Result
Gathering data
Verdict:
Malicious
File Type:
udif
Detections:
HEUR:Trojan-PSW.OSX.Amos.bg
Link:
https://opentip.kaspersky.com/87445f8cbb1734e7759489531d85ebefb57c5fcf145ba9d279be780d130acec7/results?tab=lookup
Detection:
n/a
Link:
https://mwdb.cert.pl/sample/87445f8cbb1734e7759489531d85ebefb57c5fcf145ba9d279be780d130acec7/
Verdict:
Malicious
Threat:
Trojan-PSW.OSX.Amos
Link:
https://tip.neiki.dev/file/87445f8cbb1734e7759489531d85ebefb57c5fcf145ba9d279be780d130acec7
Threat name:
MacOS.Infostealer.Generic
Create hunting rule
Status:
Suspicious
First seen:
2026-02-04 06:38:25 UTC
File Type:
Binary (Archive)
Extracted files:
9
AV detection:
5 of 36 (13.89%)
Threat level:
  5/5
Detection(s):
Suspicious file
Link:
https://check.spamhaus.org/check/?searchterm=q5cf7df3c42oo5murfjr3bpl562xyx6pcrn2tutzxz4a2eykz3dq._file
Please note that we are no longer able to provide a coverage score for Virus Total.
Threat name:
Legit
Score:
0.05
Link:
https://yomi.yoroi.company/submissions/87445f8cbb1734e7759489531d85ebefb57c5fcf145ba9d279be780d130acec7

File information

The table below shows additional information about this malware sample such as delivery method and external references.

  
X
https://x.com/L0Psec/status/2019031303270887571

Comments