guloader | 79b2d2dac60bc4cff17458bf09dd010ecd39075dc5962105c534ae66fc643d1b | Triage

Submit
Reports

Overview

overview

Static

static

1

bad.exe

windows7-x64

bad.exe

windows10-2004-x64

7

Sharing

General

Target

bad.exe
Size

464KB
Sample

230109-nkr5qsea44
MD5

42e54a95324d960cca2714a28ef18273
SHA1

929a266dac911e8d599969382576de63c92bcffa
SHA256

79b2d2dac60bc4cff17458bf09dd010ecd39075dc5962105c534ae66fc643d1b
SHA512

d05bad79aaedbc581f1e4a7489209885bf4219ec1da4ae00f5beb9f88f421d852c9414e0a1f6dc5a04cd8b583ebbe3534d83bc48493178f55155d5e207b85eef
SSDEEP

6144:lY2xUcRNOoxj+z1Ne/rJTgAPZHpfAQJ20O3m5sZtoSFJaRG/cuuYfNKL5TjDTcgW:55OCjkGNTgAPIQg53jaRG0kf45TjDTcj

Score

10^/10

guloader downloader

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

bad.exe

Resource

win7-20221111-en

guloader downloader

windows7-x64

4 signatures

300 seconds

Behavioral task

behavioral2

Sample

bad.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

3 signatures

300 seconds

Malware Config

Targets

- Target
  
  bad.exe
- Size
  
  464KB
- MD5
  
  42e54a95324d960cca2714a28ef18273
- SHA1
  
  929a266dac911e8d599969382576de63c92bcffa
- SHA256
  
  79b2d2dac60bc4cff17458bf09dd010ecd39075dc5962105c534ae66fc643d1b
- SHA512
  
  d05bad79aaedbc581f1e4a7489209885bf4219ec1da4ae00f5beb9f88f421d852c9414e0a1f6dc5a04cd8b583ebbe3534d83bc48493178f55155d5e207b85eef
- SSDEEP
  
  6144:lY2xUcRNOoxj+z1Ne/rJTgAPZHpfAQJ20O3m5sZtoSFJaRG/cuuYfNKL5TjDTcgW:55OCjkGNTgAPIQg53jaRG0kf45TjDTcj
Score

10^/10

guloader downloader
- Guloader,Cloudeye
  A shellcode based downloader first seen in 2020.
  downloader guloader
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

guloaderdownloader

behavioral2

© 2018-2024

Terms | Privacy