MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 b88ea704c02627709c6f0d2c62d1171d26df8104ffab8778ffc086504160fa33. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


GootLoader


Vendor detections: 3


Intelligence 3 IOCs YARA File information Comments
Download sample Add tag Delete this sample Report a False Positive

SHA256 hash: b88ea704c02627709c6f0d2c62d1171d26df8104ffab8778ffc086504160fa33
SHA3-384 hash: b0bb52b4e9292ff37759ea6e5b03d53faffa32c7d90be39ac081a26bd84f560551ed4bd2ec9f2ea06618da2e6544e3fa
SHA1 hash: ed9c4af7b80b1ba0c0659284a1ab24ec8347e69c
MD5 hash: 90b6eb231007e025d610bcffe506106e
humanhash: ceiling-johnny-sweet-alabama
File name:Legal_Case_Management_Guide_2025.zip
Download: download sample
Signature GootLoader
Create hunting rule
File size:89'648'777 bytes
First seen:2025-12-23 23:45:34 UTC
Last seen:Never
File type: zip
MIME type:application/zip
ssdeep 196608:fIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIy:0
TLSH T16F181369CAEE6C398A16FB5921075742E2BBDCFEE53F79025061194C0368D39FE08E47
Magika zip
Reporter monitorsg
Tags:GootLoader zip

Intelligence

File Origin
# of uploads :
1
# of downloads :
52
Origin country :
US US
Vendor Threat Intelligence
Details
Link:
https://research.acce.ciphertechsolutions.com/results/74ed2635-3e0d-4f20-bea5-03732494800e/
Verdict:
Clean
Score:
99.9%
Link:
https://cyber-fortress.com/docs/result/index.php?id=694b29d701c7b4a8fe554054
Tags:
n/a
Verdict:
Unknown
Link:
https://www.hybrid-analysis.com/sample/b88ea704c02627709c6f0d2c62d1171d26df8104ffab8778ffc086504160fa33
Result
Verdict:
UNKNOWN
Link:
https://labs.inquest.net/dfi/sha256/b88ea704c02627709c6f0d2c62d1171d26df8104ffab8778ffc086504160fa33
Verdict:
Unknown
File Type:
zip
Link:
https://opentip.kaspersky.com/b88ea704c02627709c6f0d2c62d1171d26df8104ffab8778ffc086504160fa33/results?tab=lookup
Gathering data
Detection(s):
Suspicious file
Link:
https://check.spamhaus.org/check/?searchterm=xchkobgaeytxbhdpbuwgfuixdutn7aie76vyo6h7ycdfaqla7izq._file
Please note that we are no longer able to provide a coverage score for Virus Total.

File information

The table below shows additional information about this malware sample such as delivery method and external references.

Web download

GootLoader

zip b88ea704c02627709c6f0d2c62d1171d26df8104ffab8778ffc086504160fa33

(this sample)

  
Delivery method
Distributed via web download

Comments