guloader | fc9b05cbb39884cc78b5cc7df7c1df9c2af37119b0d4ec8438b977b68f6c79af | Triage

Sharing

General

Target

fc9b05cbb39884cc78b5cc7df7c1df9c2af37119b0d4ec8438b977b68f6c79af.exe
Size

480KB
Sample

230110-pqmmwaga37
MD5

459ba9ee7169cfe26391afb0545e2278
SHA1

d5a6c3187baa4aaddb5355dde645669c416189a2
SHA256

fc9b05cbb39884cc78b5cc7df7c1df9c2af37119b0d4ec8438b977b68f6c79af
SHA512

83bac92b6462382321b833165f85aac9fbf71a0efa42689f703bb0c087df8956fd49d3e171594211caed2bc60cf127eb69f31cf599babd520436514e0dff5d94
SSDEEP

12288:ztoAXsmMsGFWGgTiwKhcQeuIbv/FeWUPT:q1mMsGF5oiVEs

Score

10^/10

guloader downloader

Malware Config

Targets

- Target
  
  fc9b05cbb39884cc78b5cc7df7c1df9c2af37119b0d4ec8438b977b68f6c79af.exe
- Size
  
  480KB
- MD5
  
  459ba9ee7169cfe26391afb0545e2278
- SHA1
  
  d5a6c3187baa4aaddb5355dde645669c416189a2
- SHA256
  
  fc9b05cbb39884cc78b5cc7df7c1df9c2af37119b0d4ec8438b977b68f6c79af
- SHA512
  
  83bac92b6462382321b833165f85aac9fbf71a0efa42689f703bb0c087df8956fd49d3e171594211caed2bc60cf127eb69f31cf599babd520436514e0dff5d94
- SSDEEP
  
  12288:ztoAXsmMsGFWGgTiwKhcQeuIbv/FeWUPT:q1mMsGF5oiVEs
Score

10^/10

guloader downloader
- Guloader,Cloudeye
  A shellcode based downloader first seen in 2020.
  downloader guloader
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

guloaderdownloader

behavioral2

guloaderdownloader