Overview

overview

10

Static

static

ORDER REQUEST.exe

windows7-x64

10

ORDER REQUEST.exe

windows10-2004-x64

7

Resubmissions

11-01-2023 21:45

230111-1l4w5sad5s 10

11-01-2023 20:31

230111-za4xbsab7v 7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ORDER REQUEST.exe

  • Size

    555KB

  • Sample

    230111-1l4w5sad5s

  • MD5

    fb50b04969bc442403cdea40b4da05eb

  • SHA1

    fe0daa19c4434f6ab8dd8869b81cb20afe56f3e9

  • SHA256

    09e78a3a2fddf1e827d95aea60ae9c3cec05679c9ec69b8d6704d4d71c0bb642

  • SHA512

    567e64137cbb750ccbddb97956e155ae02f7ed20260e7ba1352d51914b259708f767347d682cf3fe04ada621ce90783e67e2bdd25344ddd6f5985b5b2b231eb1

  • SSDEEP

    12288:mcP54D1bbZvNqB4Y2pb0tcyCl0J9G9PwKvq0pT/FXTa7:mh9QBmpPyCi9GlwebpTZTa7

Score
10/10
guloaderdiscoverydownloader

Malware Config

Targets

    • Target

      ORDER REQUEST.exe

    • Size

      555KB

    • MD5

      fb50b04969bc442403cdea40b4da05eb

    • SHA1

      fe0daa19c4434f6ab8dd8869b81cb20afe56f3e9

    • SHA256

      09e78a3a2fddf1e827d95aea60ae9c3cec05679c9ec69b8d6704d4d71c0bb642

    • SHA512

      567e64137cbb750ccbddb97956e155ae02f7ed20260e7ba1352d51914b259708f767347d682cf3fe04ada621ce90783e67e2bdd25344ddd6f5985b5b2b231eb1

    • SSDEEP

      12288:mcP54D1bbZvNqB4Y2pb0tcyCl0J9G9PwKvq0pT/FXTa7:mh9QBmpPyCi9GlwebpTZTa7

    Score
    10/10
    guloaderdiscoverydownloader

    • Guloader,Cloudeye

      A shellcode based downloader first seen in 2020.

      downloaderguloader

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks