MalwareBazaar Database
You are currently viewing the MalwareBazaar entry for SHA256 bf26b74122d2f1a8338716f0190e8c00bd383cdfda7bb1f797a017e244e66352. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.
Database Entry
Loki
Vendor detections: 3
| SHA256 hash: | bf26b74122d2f1a8338716f0190e8c00bd383cdfda7bb1f797a017e244e66352 |
|---|---|
| SHA3-384 hash: | a43cb17f4a76211d1151ae1d532a1be30b6cd2a6751f1417cb475edc5d3e48004cd09249b89cb79cf3a18717caec40b4 |
| SHA1 hash: | 1660a31fa20f8583dafeb4a0ac7e74c10aca7986 |
| MD5 hash: | 9ed3d14f139daf943e73d8f1acaf73e4 |
| humanhash: | single-sixteen-maine-fruit |
| File name: | T6636_PDF.arj |
| Download: | download sample |
| Signature | Loki |
| File size: | 832'996 bytes |
| First seen: | 2020-05-11 05:18:00 UTC |
| Last seen: | Never |
| File type: | zip |
| MIME type: | application/zip |
| ssdeep | 12288:Y/b69jDAW0FZmp2O88rZHgxWUDUo84Ho6cXKZllUkYv/Hc5UVfCqLVQ53y310uhi:Ys10/m08rZ8P24okYXHxVa73PLpiNGMu |
| TLSH | F1053344981DC6B6EF9FC8648A2277439A6B2203432A9785F076D337687D47CE33949F |
| Reporter |  jarumlus |
| Tags: | Loki |
Intelligence
File Origin
# of uploads :
1
# of downloads :
80
Origin country :
n/a
Vendor Threat Intelligence
Gathering data
Threat name:
Win32.Trojan.Pwsteal
Status:
Malicious
First seen:
2020-05-10 23:05:29 UTC
File Type:
Binary (Archive)
Extracted files:
27
AV detection:
22 of 31 (70.97%)
Threat level:
2/5
Detection(s):
Suspicious file
Please note that we are no longer able to provide a coverage score for Virus Total.
File information
The table below shows additional information about this malware sample such as delivery method and external references.
Malspam
exe Delivery method
Distributed via e-mail attachment
Comments
Login required
You need to login to in order to write a comment. Login with your abuse.ch account.