MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 bb0e5087d71b55eb9779dc9752075b40f36bf7b866d5e88f2eddd92d30586316. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


Threat unknown


Vendor detections: 3


Intelligence 3 IOCs YARA File information Comments
Download sample Add tag Delete this sample Report a False Positive

SHA256 hash: bb0e5087d71b55eb9779dc9752075b40f36bf7b866d5e88f2eddd92d30586316
SHA3-384 hash: 8dfa742a81207544a53454a915c1982e5df67b41c59d1de7e7af83157724771006a118f65ce92506fce8ecb7353dd6c8
SHA1 hash: 5fe65952ffa6d490ecc90ba94ffb8e1b6e02974e
MD5 hash: 26c5d1a89e05095a49df09c4d7af3077
humanhash: bacon-venus-alaska-bravo
File name:girlg1547-20251127-v245-1.apk
Download: download sample
File size:27'641'472 bytes
First seen:2025-11-27 09:07:48 UTC
Last seen:Never
File type: apk
MIME type:application/zip
ssdeep 786432:gGQg8ZihdWZc/3RDoSWDacM3jiEio1HW5NspO:fl6SOacMziEH125B
TLSH T14157335FF7A85A2EC83301320D9A0235669B8E02F753970B6958362979B7DD84F07BDC
TrID 36.4% (.APK) Android Package (27000/1/5)
18.2% (.JAR) Java Archive (13500/1/2)
16.8% (.VYM) VYM Mind Map (12500/1/3)
14.1% (.SH3D) Sweet Home 3D Design (generic) (10500/1/3)
8.7% (.GL) GRASP animation (6508/7/3)
Magika apk
Reporter juroots
Tags:apk

Intelligence

File Origin
# of uploads :
1
# of downloads :
53
Origin country :
IL IL
Vendor Threat Intelligence
Result
Verdict:
UNKNOWN
Link:
https://labs.inquest.net/dfi/sha256/bb0e5087d71b55eb9779dc9752075b40f36bf7b866d5e88f2eddd92d30586316
Score:
45%
Verdict:
Susipicious
File Type:
APK
Link:
https://malprob.io/report/bb0e5087d71b55eb9779dc9752075b40f36bf7b866d5e88f2eddd92d30586316
Gathering data
Gathering data
Detection(s):
Suspicious file
Link:
https://check.spamhaus.org/check/?searchterm=xmhfbb6xdnk6xf3z3slveb23idzwx55ym3k6rdzo3xms2mcymmla._file
Result
Malware family:
n/a
Score:
  3/10
Tags:
n/a
Link:
https://tria.ge/reports/251127-k4hhvsxpcq/
Behaviour
Modifies registry class
Suspicious use of SetWindowsHookEx
Enumerates physical storage devices
Verdict:
Unknown
Tags:
n/a
YARA:
n/a
Link:
https://app.threat.zone/submission/dfde71eb-74b7-449f-88ca-36e74da867c0
Please note that we are no longer able to provide a coverage score for Virus Total.
Threat name:
Legit
Score:
0.00
Link:
https://yomi.yoroi.company/submissions/bb0e5087d71b55eb9779dc9752075b40f36bf7b866d5e88f2eddd92d30586316

File information

The table below shows additional information about this malware sample such as delivery method and external references.

Web download

apk bb0e5087d71b55eb9779dc9752075b40f36bf7b866d5e88f2eddd92d30586316

(this sample)

  
URLhaus
https://urlhaus.abuse.ch/url/3717884/
  
Delivery method
Distributed via web download

Comments