guloader | 3a67e1c6d2600c78dfdebe1337de0b460bf05f92683d226083e2d6a751df2b46 | Triage

Sharing

General

Target

4706206061068288.zip
Size

26KB
Sample

210727-rl31c9rvps
MD5

f9dfad19e217749c85597b3e14a7fa17
SHA1

4c6c32c468159f0ead5448f9d943693785e0dd55
SHA256

3a67e1c6d2600c78dfdebe1337de0b460bf05f92683d226083e2d6a751df2b46
SHA512

89b9b037345f754d562f788688c6885973a0f997f0145195766cc4c168cc323db2231c57a477f9a3134df722601f547169784f40b4600ee452827127d95494bf

Score

10^/10

guloader downloader

Malware Config

Extracted

Family

guloader

C2

https://drive.google.com/uc?export=download&id=1nL7WP7YB67gedJe1MeT479-zN1rgKZdi

xor.base64

Targets

- Target
  
  BL_INV_COA_ShippingDocs,pdf.exe
- Size
  
  88KB
- MD5
  
  443e430cc75759e3192e29cb99c8226e
- SHA1
  
  d324758082e1390eb66ec275aeb6c9e41bf11cee
- SHA256
  
  01445f4c5b7f9c17482f85b5c6910a9ce77e6d1c680f15d54a025dd359530cc0
- SHA512
  
  029ebd17212e73427d9677aea2a7523e79c9dc90ebbc10c82bd1dfea059b3b7d54643cc1a166e76a690efe3afe80d30ada5149f39f3ad2d3a32b68da09b4236f
Score

10^/10

guloader downloader
- Guloader,Cloudeye
  A shellcode based downloader first seen in 2020.
  downloader guloader
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

guloaderdownloader

behavioral2

guloaderdownloader