guloader | fece1f7cb9f25ea9ed17a700a6824df26e5070a193b062b98bf185f2cd1e3ed0 | Triage

Sharing

General

Target

fece1f7cb9f25ea9ed17a700a6824df26e5070a193b062b98bf185f2cd1e3ed0
Size

602KB
Sample

221207-evbfasgb71
MD5

730947540714b5cb34e7fd8e5efc43e0
SHA1

9e8366ba716ce1fb55d066f1cbe7130fb7129ba9
SHA256

fece1f7cb9f25ea9ed17a700a6824df26e5070a193b062b98bf185f2cd1e3ed0
SHA512

3d7790db061f900f2ef8146ef52f3ad393407142e2ed3cec08ec9132f0d87b2895bdb0150adaa54c3f32f692bcaf485d512365ac219a2928f17ca79c9ae7c6c3
SSDEEP

12288:vb4AOtEG6fFRyRuW4CL8Bg4WYSdRobnPi3zyHVYZWy4Pq:vbruEGqTSD4CJCSdmbnYOyWy4Pq

Score

10^/10

guloader downloader

Malware Config

Targets

- Target
  
  fece1f7cb9f25ea9ed17a700a6824df26e5070a193b062b98bf185f2cd1e3ed0
- Size
  
  602KB
- MD5
  
  730947540714b5cb34e7fd8e5efc43e0
- SHA1
  
  9e8366ba716ce1fb55d066f1cbe7130fb7129ba9
- SHA256
  
  fece1f7cb9f25ea9ed17a700a6824df26e5070a193b062b98bf185f2cd1e3ed0
- SHA512
  
  3d7790db061f900f2ef8146ef52f3ad393407142e2ed3cec08ec9132f0d87b2895bdb0150adaa54c3f32f692bcaf485d512365ac219a2928f17ca79c9ae7c6c3
- SSDEEP
  
  12288:vb4AOtEG6fFRyRuW4CL8Bg4WYSdRobnPi3zyHVYZWy4Pq:vbruEGqTSD4CJCSdmbnYOyWy4Pq
Score

10^/10

guloader downloader
- Guloader,Cloudeye
  A shellcode based downloader first seen in 2020.
  downloader guloader
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

guloaderdownloader