guloader | 14d52119459ef12be3a2f9a3a6578ee3255580f679b1b54de0990b6ba403b0fe | Triage

Sharing

General

Target

041ef39a95c810daf4f02f80e3e858175bb1902e
Size

1.1MB
Sample

221217-zm7hzsce2z
MD5

c012417c6e5d2210fbe0bc36a79d577b
SHA1

041ef39a95c810daf4f02f80e3e858175bb1902e
SHA256

14d52119459ef12be3a2f9a3a6578ee3255580f679b1b54de0990b6ba403b0fe
SHA512

7b690b3d4235bcb18cdf55ca10dd8cb89ea50f91b5b31fc21a31039bc9b673e5e152be26f37ab0db7281bfb1fa13ea3ef4e3d2c135d5c45ea64fc976d2492cf5
SSDEEP

24576:nYHYt/KfY0/e/NbGhQT32sV2cwE0ISR9eBC5egi5tdrznSf7HYWSFdLj:YhfdQaWTGGluImYRzeTPSnLj

Score

10^/10

guloader downloader

Malware Config

Targets

- Target
  
  041ef39a95c810daf4f02f80e3e858175bb1902e
- Size
  
  1.1MB
- MD5
  
  c012417c6e5d2210fbe0bc36a79d577b
- SHA1
  
  041ef39a95c810daf4f02f80e3e858175bb1902e
- SHA256
  
  14d52119459ef12be3a2f9a3a6578ee3255580f679b1b54de0990b6ba403b0fe
- SHA512
  
  7b690b3d4235bcb18cdf55ca10dd8cb89ea50f91b5b31fc21a31039bc9b673e5e152be26f37ab0db7281bfb1fa13ea3ef4e3d2c135d5c45ea64fc976d2492cf5
- SSDEEP
  
  24576:nYHYt/KfY0/e/NbGhQT32sV2cwE0ISR9eBC5egi5tdrznSf7HYWSFdLj:YhfdQaWTGGluImYRzeTPSnLj
Score

10^/10

guloader downloader
- Guloader,Cloudeye
  A shellcode based downloader first seen in 2020.
  downloader guloader
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

guloaderdownloader

behavioral2

guloaderdownloader