MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 88b9016ca27b117830d0551458312126f49feca182dcfbc8f4f5558c7fd4fdc1. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry

Intelligence File information 3 Yara Comments

SHA256 hash: 88b9016ca27b117830d0551458312126f49feca182dcfbc8f4f5558c7fd4fdc1
SHA1 hash: a40512ebae970e3cbe3362804298301f967ca0bb
MD5 hash: 77f91362dfd87a0a8cb4daf402c301a5
File name:77f91362dfd87a0a8cb4daf402c301a5.exe
Download: download sample
Signature GuLoader
File size:94'208 bytes
First seen:2020-05-23 11:51:26 UTC
Last seen:2020-05-23 13:13:29 UTC
File type:Executable exe
MIME type:application/x-dosexec
imphash 10600f63092fae94a89ca78bbe36c574
ssdeep 768:BhYO8tCW8G6yRoheYvQgKlyCVvDF4ZH1VUegJYD0jmHdI/Y8y1qYl:bYeJGKD5K5VvDF4ye6YMXyb
TLSH 43931822B890ECE5CE248FB26B379AF41527BC302E142E4731F97F1D193658D69A6743
Reporter @abuse_ch
Tags:exe GuLoader

GuLoader payload URL:


Mail intelligence No data
# of uploads 2
# of downloads 18
Origin country US US
VirusTotal:Virustotal results 37.50%
ReversingLabs :No data

File information

The table below shows additional information about this malware sample such as delivery method and external references.

Web download


Executable exe 88b9016ca27b117830d0551458312126f49feca182dcfbc8f4f5558c7fd4fdc1

(this sample)

Delivery method
Distributed via web download