guloader | d75fbeda5b192af6b3a92d3b0204e555a0edb1c472be74e5e4f641aeb7092181 | Triage

Sharing

General

Target

d75fbeda5b192af6b3a92d3b0204e555a0edb1c472be74e5e4f641aeb7092181
Size

1.2MB
Sample

220121-22txjscbf4
MD5

1ef8a03725c991e7d40bfbd8ff02a0e1
SHA1

9fcf905e64a483f2acb2dda4a12eca92fe40f76c
SHA256

d75fbeda5b192af6b3a92d3b0204e555a0edb1c472be74e5e4f641aeb7092181
SHA512

7fc55bd57d1fa652b249a4a6edcdeb3433d575a023dd3e8f00fa990dfabb36e500fd970435d7b5ee0010769e121f949f870245a2a675b2698499af2627eb5cfa

Score

10^/10

guloader downloader

Malware Config

Extracted

Family

guloader

C2

https://drive.google.com/uc?export=download&id=1mVJV7BrsU6WZXyhq-IOOLwoe8zGnSg2i

xor.base64

Targets

- Target
  
  PO20_073.EXE
- Size
  
  40KB
- MD5
  
  4ae0fd2e20e7cfc89adb3a85e773cb74
- SHA1
  
  2a11a3bbd5876d6c923ca8be90de8cee2e36df30
- SHA256
  
  9722c1d56a376441e7ceb74b7e0f155f49eeba76a5049dfa9233eb2d7726e89d
- SHA512
  
  c48a477083af7a68f8bfcdf09cd15cb43bfe60db7b28f9f1e8e0e61a5969fa9bb96f28191508830edf3400576b72387c59fc1eae6c040e0dbbcb1ebb139f10c0
Score

10^/10

guloader downloader
- Guloader,Cloudeye
  A shellcode based downloader first seen in 2020.
  downloader guloader
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

guloaderdownloader

behavioral2

guloaderdownloader