guloader | 85b4537e66421ac2907b8b74820a1bd2f11abd4ee9ea09d02a65eed7b12c6304 | Triage

Sharing

General

Target

85b4537e66421ac2907b8b74820a1bd2f11abd4ee9ea09d02a65eed7b12c6304
Size

140KB
Sample

230129-srtz5ade8s
MD5

04f42bbbc53466a8711dd0f156920f8e
SHA1

42276c1fec4bfd3ad315f22abbb813c5b0bf018f
SHA256

85b4537e66421ac2907b8b74820a1bd2f11abd4ee9ea09d02a65eed7b12c6304
SHA512

7c733c046c5d4dd147cdbcfa1bd8652849c85fba9d5e547a18c945b6739c83122d326f3c7bb881b32a4c29748cf63bf5ab3d9cd990260eea344ea59142418057
SSDEEP

1536:mWWTwV4fVhusO+SxOs0pXRs6kAunyiNEREdxrTFAMTuxVQwV4MjW:uwVUPhO+SxOBXRs6kAFzREzXTQqwV

Score

10^/10

guloader downloader

Malware Config

Extracted

Family

guloader

C2

https://onedrive.live.com/download?cid=802AC8A73EEC8C8E&resid=802AC8A73EEC8C8E%21108&authkey=AMPtFO74gVV-InY

xor.base64

Targets

- Target
  
  85b4537e66421ac2907b8b74820a1bd2f11abd4ee9ea09d02a65eed7b12c6304
- Size
  
  140KB
- MD5
  
  04f42bbbc53466a8711dd0f156920f8e
- SHA1
  
  42276c1fec4bfd3ad315f22abbb813c5b0bf018f
- SHA256
  
  85b4537e66421ac2907b8b74820a1bd2f11abd4ee9ea09d02a65eed7b12c6304
- SHA512
  
  7c733c046c5d4dd147cdbcfa1bd8652849c85fba9d5e547a18c945b6739c83122d326f3c7bb881b32a4c29748cf63bf5ab3d9cd990260eea344ea59142418057
- SSDEEP
  
  1536:mWWTwV4fVhusO+SxOs0pXRs6kAunyiNEREdxrTFAMTuxVQwV4MjW:uwVUPhO+SxOBXRs6kAFzREzXTQqwV
Score

10^/10

guloader downloader
- Guloader,Cloudeye
  A shellcode based downloader first seen in 2020.
  downloader guloader
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

guloaderdownloader

behavioral2

guloaderdownloader