guloader | ffcc6809170a1544adb10a951a7dfa7d4d56da6fa1e8a6a683b8f830af53f709 | Triage

Sharing

General

Target

ffcc6809170a1544adb10a951a7dfa7d4d56da6fa1e8a6a683b8f830af53f709
Size

1.2MB
Sample

220121-2rkacsbfh9
MD5

db94c6e21255c94f587719a32a0b33f6
SHA1

174cc56f23ff71bfd23f2c254a5bf48b6cfa6b8c
SHA256

ffcc6809170a1544adb10a951a7dfa7d4d56da6fa1e8a6a683b8f830af53f709
SHA512

d34c77e7ccf389b4405bb2f6a53f57e2416b4d5fa123a35aca449eba56758e784d36404fe78c4a397bc6c45b95764dc11c237a42746d34c49ed4c0d911a5da77

Score

10^/10

guloader downloader

Malware Config

Extracted

Family

guloader

C2

https://drive.google.com/uc?export=download&id=1QyzKj6kk6pYVwPk7MHNiD0Xm0G-QCm-R

xor.base64

Targets

- Target
  
  AWB_DOC_.EXE
- Size
  
  36KB
- MD5
  
  dc3dcc1692ac8e1ffde71f6a2b4e82dc
- SHA1
  
  f21b7110aadfa5b7692774094e728522f13f7077
- SHA256
  
  50aae299d8b67fe7ee08351a7c8bac0e109c7789eeecf657b91ada84e3eab39e
- SHA512
  
  d7c988ddfc0c03e47413250d4ef00f354c6cc75f8d9ffec16fbf2c15f3be222978c0e4aab0eb1ca79ac1391ab89ccbe01f393747889f6fe4afa23f43bca41674
Score

10^/10

guloader downloader
- Guloader,Cloudeye
  A shellcode based downloader first seen in 2020.
  downloader guloader
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

guloaderdownloader

behavioral2

guloaderdownloader