guloader | d126134f423904dcffd0a3dc1ed248ab8280aa80a0c1dec90d144e23ead4210f | Triage

Sharing

General

Target

d126134f423904dcffd0a3dc1ed248ab8280aa80a0c1dec90d144e23ead4210f
Size

144KB
Sample

221130-vnvtcsce2x
MD5

2ef4e6311d39efbcb6e3c16436a8531c
SHA1

fd2ad02af0102f5e520c9e12dd3c84f037294416
SHA256

d126134f423904dcffd0a3dc1ed248ab8280aa80a0c1dec90d144e23ead4210f
SHA512

fbc53cc77ec1cf20d8eabb093c90a14158f540f187067c540bc8f07a30714190f3ca0d5d3910a7e8ff9fb94646f9c8b7c2c02a67f8c9b092880f7fc6270cbd41
SSDEEP

1536:WjjV5we/P45/uPDye6zzwV/7PadxEgLOCufnRcyK8giOZJzQl:OjV5we345AyxzwZPadxFLYJtgiZ

Score

10^/10

guloader downloader guloader

Malware Config

Extracted

Family

guloader

C2

https://onedrive.live.com/download?cid=CC37CE9833869E07&resid=CC37CE9833869E07%215874&authkey=AIAhz2kHwq-I--U

xor.base64

Targets

- Target
  
  d126134f423904dcffd0a3dc1ed248ab8280aa80a0c1dec90d144e23ead4210f
- Size
  
  144KB
- MD5
  
  2ef4e6311d39efbcb6e3c16436a8531c
- SHA1
  
  fd2ad02af0102f5e520c9e12dd3c84f037294416
- SHA256
  
  d126134f423904dcffd0a3dc1ed248ab8280aa80a0c1dec90d144e23ead4210f
- SHA512
  
  fbc53cc77ec1cf20d8eabb093c90a14158f540f187067c540bc8f07a30714190f3ca0d5d3910a7e8ff9fb94646f9c8b7c2c02a67f8c9b092880f7fc6270cbd41
- SSDEEP
  
  1536:WjjV5we/P45/uPDye6zzwV/7PadxEgLOCufnRcyK8giOZJzQl:OjV5we345AyxzwZPadxFLYJtgiZ
Score

10^/10

guloader downloader guloader
- Guloader,Cloudeye
  A shellcode based downloader first seen in 2020.
  downloader guloader
- Guloader payload
  guloader
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

guloaderdownloaderguloader

behavioral2

guloaderdownloaderguloader