MalwareBazaar Database
You are currently viewing the MalwareBazaar entry for SHA256 b81e00de742cceea1365ed22bb38ed69d9abc2d1be084e36c0f4e4fa7d152c63. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.
Database Entry
GuLoader
Vendor detections: 3
| SHA256 hash: | b81e00de742cceea1365ed22bb38ed69d9abc2d1be084e36c0f4e4fa7d152c63 |
|---|---|
| SHA3-384 hash: | 40a2452857ffc05b90a10aaaf2df83bd458e5a55c0c27a8f740d8b02263124aa3d828b0f708c1e01a0be7e80f41af249 |
| SHA1 hash: | 9a70463a05859360268dc00f92f66f77dfc667ed |
| MD5 hash: | 655d40f56d44c6f1e1d83f9cbd5628a0 |
| humanhash: | alpha-sad-pip-august |
| File name: | YQUANZHOU CO. LTD_pdf.gz |
| Download: | download sample |
| Signature | GuLoader |
| File size: | 25'688 bytes |
| First seen: | 2020-05-12 05:14:49 UTC |
| Last seen: | Never |
| File type: | zip |
| MIME type: | application/zip |
| ssdeep | 768:ElGgbBd1na9ztZiDXSdmp5ousJDOBig1E0hVta:CBqHMDXSdwIJDOB51pVI |
| TLSH | C3B2E17D449DD94CC0AB29626613E2D67A958F07A25DF23803FC2C93F458957A3640FE |
| Reporter |  jarumlus |
| Tags: | GuLoader |
Intelligence
File Origin
# of uploads :
1
# of downloads :
77
Origin country :
n/a
Vendor Threat Intelligence
Detection(s):
Gathering data
Threat name:
Win32.Trojan.Injector
Status:
Malicious
First seen:
2020-05-11 21:53:40 UTC
AV detection:
23 of 48 (47.92%)
Threat level:
5/5
Detection(s):
Suspicious file
Please note that we are no longer able to provide a coverage score for Virus Total.
File information
The table below shows additional information about this malware sample such as delivery method and external references.
Malspam
exe Delivery method
Distributed via e-mail attachment
Comments
Login required
You need to login to in order to write a comment. Login with your abuse.ch account.