MalwareBazaar Database
You are currently viewing the MalwareBazaar entry for SHA256 d4ee482f000a6285714f6a2abf793c7769979331b135a226796cc2d82e652946. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.
Database Entry
GuLoader
Vendor detections: 3
| SHA256 hash: | d4ee482f000a6285714f6a2abf793c7769979331b135a226796cc2d82e652946 |
|---|---|
| SHA3-384 hash: | 2d3e358208f54863a52d6bfab6a3f012be4127590c4e3a0976f019cc01fe92ab182fc76c1b2efea9361afe8450205f07 |
| SHA1 hash: | 02d69a42ef5eec9a327c00099286f494cf78eea6 |
| MD5 hash: | 073051e1e8c88979d7d19e134771844a |
| humanhash: | pizza-whiskey-helium-comet |
| File name: | Invoice09876322.zip |
| Download: | download sample |
| Signature | GuLoader |
| File size: | 24'016 bytes |
| First seen: | 2020-05-12 11:19:10 UTC |
| Last seen: | 2020-05-12 11:40:06 UTC |
| File type: | zip |
| MIME type: | application/zip |
| ssdeep | 384:4DBwi8JbcxPhnnANWdQrk4kD9QHZoCvVuaxc3DPB34MbP+kLw+nChq/QJqU6E:fzAB9UhkR6hAdhmkLwOeHqLE |
| TLSH | 35B2D194188361D3787262E88BDC3695F99A0E9EC3A55247D805488E6FD37B683C89FC |
| Reporter |  jarumlus |
| Tags: | GuLoader |
Intelligence
File Origin
# of uploads :
2
# of downloads :
74
Origin country :
n/a
Vendor Threat Intelligence
Gathering data
Threat name:
Win32.Trojan.Wacatac
Status:
Malicious
First seen:
2020-05-12 11:36:14 UTC
File Type:
Binary (Archive)
Extracted files:
7
AV detection:
27 of 48 (56.25%)
Threat level:
2/5
Detection(s):
Suspicious file
Please note that we are no longer able to provide a coverage score for Virus Total.
File information
The table below shows additional information about this malware sample such as delivery method and external references.
Malspam
exe Delivery method
Distributed via e-mail attachment
Comments
Login required
You need to login to in order to write a comment. Login with your abuse.ch account.