guloader | 81be2b6a4673dcae9823b1235f4370471a2cdbb48ad7cad14926b09ce0e3e488 | Triage

Sharing

General

Target

FATURA_013_1731pdf.rar
Size

180KB
Sample

220923-g3sqnadda4
MD5

a96bf1c717f9a9f3fd11a38b5c54e76f
SHA1

f65ac62cbc7fc204a99bab171169dc771c0e97af
SHA256

81be2b6a4673dcae9823b1235f4370471a2cdbb48ad7cad14926b09ce0e3e488
SHA512

5fc5ae589fb0843f838985e3b3a74d58e61003d0fcd3ef8c420ffb052b1014caa0c002c98906d7dfdb73aa4f1ef4bc04edf0dc8d751eb4c2fec5670b87137a0f
SSDEEP

3072:UebI6u9MCsSI3xwpZFF7iXFLXWU6grwekNKByc+nA4XPUDCegH7qcIHcYXgL49R8:Uec6v7nBgZcFLmU6grjkABpDCb2V80F8

Score

10^/10

guloader downloader

Malware Config

Targets

- Target
  
  FATURA_013_1731pdf.exe
- Size
  
  313KB
- MD5
  
  382b984e3a091199d778f56ed7faf0d4
- SHA1
  
  33d56b2f918129b17f15a186994bd9092a50ea9f
- SHA256
  
  398a3ecbe96e1b4d131f6d367e36aac8e42a89c0f3ddf075fb28f5c6f3921cea
- SHA512
  
  23dcb35187fbcec620697ea720ee315b29f0a55256f0b51c03379074d783da8b5055e9263835060ddea9c09056725f8bcdb947cde112554f62472cc4b0b6ac24
- SSDEEP
  
  3072:nFYTUnLKvaVwYzI5PesvjhheNiB+ff0jMWDxLzW8a0TGZidy0OVrmC27PJutTZn:F1kal0PZVheNA+ff039W1xLhVrmPjJOd
Score

10^/10

guloader downloader
- Guloader,Cloudeye
  A shellcode based downloader first seen in 2020.
  downloader guloader
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

guloaderdownloader