guloader | 59d5100a71f7b3106addf180c3943b907d924b92bb376deb9b426ed15e37979d | Triage

Submit
Reports

Overview

overview

Static

static

bellerophon.exe

windows7-x64

bellerophon.exe

windows10-2004-x64

Sharing

General

Target

bellerophon.exe
Size

144KB
Sample

221123-pbp5fsea71
MD5

8a9c6996f2212dbc80925bb11d6fc1af
SHA1

2c07af12be2988d32afb43067f2ee3c51700018e
SHA256

59d5100a71f7b3106addf180c3943b907d924b92bb376deb9b426ed15e37979d
SHA512

cfe902013fc325fbef73a9b56f4fa665c080e9ae5111f65daf849ac992d5061ba53e8b3ec75b44feeec34d0b26910fed88170159f77ab181273bb18eec5a1d67
SSDEEP

3072:TaUOHpDt8VmEglSpYmQDczVtR9lPJtoVmy:TR0Dt8sI3zVtR9qsy

Score

10^/10

guloader downloader guloader

Static task

static1

Behavioral task

behavioral1

Sample

bellerophon.exe

Resource

win7-20221111-en

guloader downloader guloader

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

bellerophon.exe

Resource

win10v2004-20220901-en

guloader downloader guloader

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Extracted

Family

guloader

C2

https://drive.google.com/uc?export=download&id=1C7wid0ObWt92PjoJjUy2uO8KGpf3_dvC

xor.base64

Targets

- Target
  
  bellerophon.exe
- Size
  
  144KB
- MD5
  
  8a9c6996f2212dbc80925bb11d6fc1af
- SHA1
  
  2c07af12be2988d32afb43067f2ee3c51700018e
- SHA256
  
  59d5100a71f7b3106addf180c3943b907d924b92bb376deb9b426ed15e37979d
- SHA512
  
  cfe902013fc325fbef73a9b56f4fa665c080e9ae5111f65daf849ac992d5061ba53e8b3ec75b44feeec34d0b26910fed88170159f77ab181273bb18eec5a1d67
- SSDEEP
  
  3072:TaUOHpDt8VmEglSpYmQDczVtR9lPJtoVmy:TR0Dt8sI3zVtR9qsy
Score

10^/10

guloader downloader guloader
- Guloader,Cloudeye
  A shellcode based downloader first seen in 2020.
  downloader guloader
- Guloader payload
  guloader
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

guloaderdownloaderguloader

behavioral2

guloaderdownloaderguloader

© 2018-2024

Terms | Privacy