MalwareBazaar Database
You are currently viewing the MalwareBazaar entry for SHA256 bf17828fd069ade2b9081c0c65816ff0a7920417848322faf0ea1f8969c3f679. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.
Database Entry
GuLoader
Vendor detections: 2
| SHA256 hash: | bf17828fd069ade2b9081c0c65816ff0a7920417848322faf0ea1f8969c3f679 |
|---|---|
| SHA3-384 hash: | 206bdb8e3113cc0b39fbe668ec44e52b3816801abaaf0ff6da5344ac4b4ee0d5350c2042516aafed7d49a55de79e6ae0 |
| SHA1 hash: | 7f7d56e9c0d2817dbe1a44e198109d55d58b8329 |
| MD5 hash: | cae53e3d6b8453f071d8428d5a8d8d33 |
| humanhash: | georgia-ten-wolfram-oven |
| File name: | Advise for Remittance.gz |
| Download: | download sample |
| Signature | GuLoader |
| File size: | 36'193 bytes |
| First seen: | 2020-05-26 05:32:56 UTC |
| Last seen: | 2020-05-26 09:13:05 UTC |
| File type: | zip |
| MIME type: | application/zip |
| ssdeep | 768:8nxASYrr3+a7/1ksWnObXcYw51IW2Zg7manwnSZ+L:8xtY3Z/1kIbXc352Zg7manP+L |
| TLSH | A6F2F266E8038C26E299E5645933B5F2A002EBCF8657C5D3CD9E65F3093971C73B80C5 |
| Reporter |  jarumlus |
| Tags: | GuLoader |
Intelligence
File Origin
# of uploads :
3
# of downloads :
63
Origin country :
n/a
Vendor Threat Intelligence
Detection(s):
Gathering data
Threat name:
Win32.Trojan.Dynamer
Status:
Malicious
First seen:
2020-05-26 05:36:28 UTC
File Type:
Binary (Archive)
Extracted files:
5
AV detection:
25 of 48 (52.08%)
Threat level:
2/5
Please note that we are no longer able to provide a coverage score for Virus Total.
File information
The table below shows additional information about this malware sample such as delivery method and external references.
Malspam
exe Delivery method
Distributed via e-mail attachment
Comments
Login required
You need to login to in order to write a comment. Login with your abuse.ch account.