MalwareBazaar Database
You are currently viewing the MalwareBazaar entry for SHA256 bfa8e8bd2add1cda68d9551d23d935ca87fa1c83131d7e2cc0d6710e4d5de8d5. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.
Database Entry
GuLoader
Vendor detections: 2
| SHA256 hash: | bfa8e8bd2add1cda68d9551d23d935ca87fa1c83131d7e2cc0d6710e4d5de8d5 |
|---|---|
| SHA3-384 hash: | 2c6db319f2a35efadcec28312ccc1d8677b48cefbfd8550bd41d4171adf96f76a2d907b8e5ab9e4cf2f124d0ada4b670 |
| SHA1 hash: | 48495a9419b625abbe59f68aea6b91c34569a818 |
| MD5 hash: | c80ed0e5add84a1a63ed9b79e9a301e7 |
| humanhash: | kitten-yankee-sad-fillet |
| File name: | DHL Shipment Document.ace |
| Download: | download sample |
| Signature | GuLoader |
| File size: | 86'069 bytes |
| First seen: | 2020-06-04 15:29:33 UTC |
| Last seen: | Never |
| File type: | ace |
| MIME type: | application/octet-stream |
| ssdeep | 1536:YBV7RqszUorzNxwEoBPmY8oAJ15S357n5u8wPGZvJs0E8duUbPUr:YBV8snnN+DmzoAJ3S35lu8wu+e3gr |
| TLSH | CE8312A233CECD530A7D526B9A17964A35215EFF4B01BC70AEF3622D3461F825216C2E |
| Reporter |  jarumlus |
Intelligence
File Origin
# of uploads :
1
# of downloads :
59
Origin country :
n/a
Vendor Threat Intelligence
Gathering data
Threat name:
Win32.Trojan.Fareit
Status:
Malicious
First seen:
2020-06-04 15:35:50 UTC
AV detection:
14 of 31 (45.16%)
Threat level:
2/5
Please note that we are no longer able to provide a coverage score for Virus Total.
File information
The table below shows additional information about this malware sample such as delivery method and external references.
Malspam
exe Delivery method
Distributed via e-mail attachment
Comments
Login required
You need to login to in order to write a comment. Login with your abuse.ch account.