guloader | a502177615ac74e35f1c1d8ae87cd45b691a76fbce137687b4045b2b275048c1 | Triage

Resubmissions

31-10-2022 14:17

221031-rl2bkscabm 10

31-10-2022 14:13

221031-rjh28acaar 10

19-10-2022 12:21

221019-pjjbwagagn 10

Sharing

General

Target

daisis.scr_
Size

408KB
Sample

221019-pjjbwagagn
MD5

fc9032672e5400d5d1034f0d188e8fb4
SHA1

97f435738a5c883f74544a54487444b22990d500
SHA256

a502177615ac74e35f1c1d8ae87cd45b691a76fbce137687b4045b2b275048c1
SHA512

6e788346894f957f2e59273916633560a71164433c7636d5b9074621426154c95b0308ab7445b9dd67a92997f4ba578f04a24105efe3625f4693aebeda53b8fb
SSDEEP

12288:CNEi7eCZX5csAwaHa0g2fiLJpWOcYVwNKqI:CNEi7eKesAwaHa018JpDl+NKX

Score

10^/10

guloader downloader

Malware Config

Targets

- Target
  
  daisis.scr_
- Size
  
  408KB
- MD5
  
  fc9032672e5400d5d1034f0d188e8fb4
- SHA1
  
  97f435738a5c883f74544a54487444b22990d500
- SHA256
  
  a502177615ac74e35f1c1d8ae87cd45b691a76fbce137687b4045b2b275048c1
- SHA512
  
  6e788346894f957f2e59273916633560a71164433c7636d5b9074621426154c95b0308ab7445b9dd67a92997f4ba578f04a24105efe3625f4693aebeda53b8fb
- SSDEEP
  
  12288:CNEi7eCZX5csAwaHa0g2fiLJpWOcYVwNKqI:CNEi7eKesAwaHa018JpDl+NKX
Score

10^/10

guloader downloader
- Guloader,Cloudeye
  A shellcode based downloader first seen in 2020.
  downloader guloader
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

guloaderdownloader