guloader | c06665899a1e0888f33d4feb16e5ddeebb333bf269c80393ff12118baa5cfa0e | Triage

Sharing

General

Target

5454988100534272.zip
Size

43KB
Sample

210714-rl2m168cgj
MD5

a6825b6d538ebb38715be0f58735a49f
SHA1

b7dbfb686a627661559cc2d21ce9f0494ce3b14f
SHA256

c06665899a1e0888f33d4feb16e5ddeebb333bf269c80393ff12118baa5cfa0e
SHA512

75aa59c9408879b84041dd546fcf29c0f29e4b9c16e826eab9d53b8c0510cc25192d836fbdf83f83434dec1f2e4f559f46a112cd7e507e757ce07e96d2573960

Score

10^/10

guloader downloader

Malware Config

Extracted

Family

guloader

C2

https://jpfcomputings.nl/b/bitrratrw_KWQGoLaD112.bin

xor.base64

Targets

- Target
  
  3b73187bb0bb1bc3f9b112710969da4340b5791d63c6ac0d45f7c2bbf2dfd588
- Size
  
  124KB
- MD5
  
  cb5dc8065dc38d47971aada093d6eea2
- SHA1
  
  b0806ab4ea8a53ab93e028a6eb9a3496c22da859
- SHA256
  
  3b73187bb0bb1bc3f9b112710969da4340b5791d63c6ac0d45f7c2bbf2dfd588
- SHA512
  
  7ff14d8a372763794c2835f17d0e2d0a8752c89853ba2e9eaeae431864b147aa7c1f914c9138c58a7fc332b1c56922e56001e7154daadb0674af093cf2e64870
Score

10^/10

guloader downloader
- Guloader,Cloudeye
  A shellcode based downloader first seen in 2020.
  downloader guloader
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

guloaderdownloader

behavioral2