guloader | ac59c5fc6765571ed1365187fd06619fb8a2f4a9bdef46e9b5067734108995d1 | Triage

Submit
Reports

Overview

overview

Static

static

Order Inquiry.pdf.exe

windows7-x64

Order Inquiry.pdf.exe

windows10-2004-x64

Sharing

General

Target

ac59c5fc6765571ed1365187fd06619fb8a2f4a9bdef46e9b5067734108995d1
Size

17KB
Sample

221128-pv82nshe6z
MD5

a9fce32a0fb10e26a3a006969482b08e
SHA1

c5df8b90a21b202a8d3b3c1c9c4f36694cee9409
SHA256

ac59c5fc6765571ed1365187fd06619fb8a2f4a9bdef46e9b5067734108995d1
SHA512

904f946064202d8cade8df9cc8295401da7f0495714fd0da52047a28c02712e28a57a3ab2556376910c6a2a455a171bf1f23d4a07aadb48d89ecec8d4a6c2d83
SSDEEP

384:SkmlJI2Io8FzCVDW20HEgOLJsckOXsZPmcVEeNB48:SIFzCVDT0HoMnZOcVEew8

Score

10^/10

guloader downloader guloader

Static task

static1

Behavioral task

behavioral1

Sample

Order Inquiry.pdf.exe

Resource

win7-20220812-en

guloader downloader guloader

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

Order Inquiry.pdf.exe

Resource

win10v2004-20221111-en

guloader downloader guloader

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Extracted

Family

guloader

C2

https://onedrive.live.com/download?cid=7B6A3EE1AA3735F9&resid=7B6A3EE1AA3735F9%21119&authkey=AGz5zx73zVslUFs

xor.base64

Targets

- Target
  
  Order Inquiry.pdf.exe
- Size
  
  64KB
- MD5
  
  d7bd008c1be9e75b0732b38bf08d5fe4
- SHA1
  
  2e1eba40da2c7667bfcbcb1b01e2766a74ddebd2
- SHA256
  
  c004bcb9a1b88873e36495a529c5e4614040d66a66880e34ab0d158ad09623a8
- SHA512
  
  42e52197a2293f8955113a0321b4e5e7bc57f5068ded9251566e0b5ecd97a8e19a66def458d9813c837ddd848f096fbf42c013443fb7928e6361cca4b1a3f8ac
- SSDEEP
  
  384:8cMndsly7cdah19txrnpY0lyY7o4f09LS2NGdX6990P9wsa9Zl4r7I:8FdZAOzpY0lho4MxDNOO9wwH9X27
Score

10^/10

guloader downloader guloader
- Guloader,Cloudeye
  A shellcode based downloader first seen in 2020.
  downloader guloader
- Guloader payload
  guloader
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

guloaderdownloaderguloader

behavioral2

guloaderdownloaderguloader

© 2018-2024

Terms | Privacy