General

  • Size

    180KB

  • Sample

    220923-g3sqnadda4

  • MD5

    a96bf1c717f9a9f3fd11a38b5c54e76f

  • SHA1

    f65ac62cbc7fc204a99bab171169dc771c0e97af

  • SHA256

    81be2b6a4673dcae9823b1235f4370471a2cdbb48ad7cad14926b09ce0e3e488

  • SHA512

    5fc5ae589fb0843f838985e3b3a74d58e61003d0fcd3ef8c420ffb052b1014caa0c002c98906d7dfdb73aa4f1ef4bc04edf0dc8d751eb4c2fec5670b87137a0f

Score
10/10

Malware Config

Targets

    • Target

      FATURA_013_1731pdf.exe

    • Size

      313KB

    • MD5

      382b984e3a091199d778f56ed7faf0d4

    • SHA1

      33d56b2f918129b17f15a186994bd9092a50ea9f

    • SHA256

      398a3ecbe96e1b4d131f6d367e36aac8e42a89c0f3ddf075fb28f5c6f3921cea

    • SHA512

      23dcb35187fbcec620697ea720ee315b29f0a55256f0b51c03379074d783da8b5055e9263835060ddea9c09056725f8bcdb947cde112554f62472cc4b0b6ac24

    Score
    10/10
    • Guloader,Cloudeye

      A shellcode based downloader first seen in 2020.

    • Loads dropped DLL

MITRE ATT&CK Matrix

Collection

    Command and Control

      Credential Access

        Defense Evasion

          Execution

            Exfiltration

              Impact

                Initial Access

                  Lateral Movement

                    Persistence

                      Privilege Escalation