guloader | f80962371161f31493fee8db67f3f5c053358e75cf2b7f4b1135de5baff377dd | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

1

DOC-721109...df.exe

windows7-x64

7

DOC-721109...df.exe

windows10-2004-x64

Sharing

General

Target

DOC-72110983657734771-pdf.exe
Size

347KB
Sample

221006-clltkagbb3
MD5

c1f0b4caed18b81ecc00f38f10e9203d
SHA1

55838d97be9547cd578c9cfcf50a53cd9bfe7cc7
SHA256

f80962371161f31493fee8db67f3f5c053358e75cf2b7f4b1135de5baff377dd
SHA512

18d34c269c71663ed1f1c76a8a045f2f5c97ee0ba3b43b3d6d4a5c93966605cb7fa24dedef7ec7286a73093f5a2e01412ad254f70cbcaf32c8314189fa5e75a5
SSDEEP

6144:U57TcfYfVe5IpmseWlBsXpis+w6IvAmJWDMAc8h:vYMupms6iWj/WDMr8h

Score

10^/10

guloader discovery downloader

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

DOC-72110983657734771-pdf.exe

Resource

win7-20220812-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

DOC-72110983657734771-pdf.exe

Resource

win10v2004-20220901-en

guloader discovery downloader

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  DOC-72110983657734771-pdf.exe
- Size
  
  347KB
- MD5
  
  c1f0b4caed18b81ecc00f38f10e9203d
- SHA1
  
  55838d97be9547cd578c9cfcf50a53cd9bfe7cc7
- SHA256
  
  f80962371161f31493fee8db67f3f5c053358e75cf2b7f4b1135de5baff377dd
- SHA512
  
  18d34c269c71663ed1f1c76a8a045f2f5c97ee0ba3b43b3d6d4a5c93966605cb7fa24dedef7ec7286a73093f5a2e01412ad254f70cbcaf32c8314189fa5e75a5
- SSDEEP
  
  6144:U57TcfYfVe5IpmseWlBsXpis+w6IvAmJWDMAc8h:vYMupms6iWj/WDMr8h
Score

10^/10

discovery guloader downloader
- Guloader,Cloudeye
  A shellcode based downloader first seen in 2020.
  downloader guloader
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

guloaderdiscoverydownloader

© 2018-2025

Terms | Privacy