Overview

overview

10

Static

static

8

Despacho_d...on.doc

windows7_x64

1

Despacho_d...on.doc

windows10_x64

10

Resubmissions

20-07-2021 11:03

210720-nzqxzersjs 10

20-07-2021 10:57

210720-n32mpq7vnn 10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Despacho_de_informacion.doc

  • Size

    178KB

  • Sample

    210720-nzqxzersjs

  • MD5

    d51027ccc08c7a7bf42e481e85196136

  • SHA1

    02abd7025f5e3a721676714410c66fc5b8d95f22

  • SHA256

    38473a7da74c7513b8b26550778e6c10337bfa0c8037a5ec1040200c324dcc5b

  • SHA512

    008279cd4e860de0279b66eac71e2b9da31418e566d2e8f6be4e59cfdb7f192614aaeb838d1a3fea151804ec0f2fac6b093127fe1c8cdfc86c9caacfa69f0fc4

Score
10/10
guloaderdownloadermacromacro_on_actionxlm

Malware Config

Targets

    • Target

      Despacho_de_informacion.doc

    • Size

      178KB

    • MD5

      d51027ccc08c7a7bf42e481e85196136

    • SHA1

      02abd7025f5e3a721676714410c66fc5b8d95f22

    • SHA256

      38473a7da74c7513b8b26550778e6c10337bfa0c8037a5ec1040200c324dcc5b

    • SHA512

      008279cd4e860de0279b66eac71e2b9da31418e566d2e8f6be4e59cfdb7f192614aaeb838d1a3fea151804ec0f2fac6b093127fe1c8cdfc86c9caacfa69f0fc4

    Score
    10/10
    guloaderdownloader

    • Guloader,Cloudeye

      A shellcode based downloader first seen in 2020.

      downloaderguloader

    • Executes dropped EXE

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Query Registry

2
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks