guloader | 9e94446daa31307c1f06f8d452ace86c16c1306eb32c16a083fc30c7f1d6ccc4 | Triage

Sharing

General

Target

9e94446daa31307c1f06f8d452ace86c16c1306eb32c16a083fc30c7f1d6ccc4
Size

128KB
Sample

230129-t1zseafb6w
MD5

b33657fd180bdaf5cd57a82c348f86ca
SHA1

80b48cfab2d5df0927381c18b13a3d6c4fc55611
SHA256

9e94446daa31307c1f06f8d452ace86c16c1306eb32c16a083fc30c7f1d6ccc4
SHA512

8691aac89ff7c0080bce9c6c3133bc0d6cc0274daa8eb8d3427eb6929a4201d83c2108185d725183d5641c273e5992469575567a402129a4c731a078291e3a21
SSDEEP

1536:uWWTwV4fVhuN3yFBm1H/1zT+yLUcAeOud1h+OhDQTcuxVQwV4MjW:2wVUPE34B4HZntAJud1h+OhMTcQqwV

Score

10^/10

guloader downloader guloader

Malware Config

Extracted

Family

guloader

C2

https://onedrive.live.com/download?cid=802AC8A73EEC8C8E&resid=802AC8A73EEC8C8E%21109&authkey=AHIyNVT0zJMFfdA

xor.base64

Targets

- Target
  
  9e94446daa31307c1f06f8d452ace86c16c1306eb32c16a083fc30c7f1d6ccc4
- Size
  
  128KB
- MD5
  
  b33657fd180bdaf5cd57a82c348f86ca
- SHA1
  
  80b48cfab2d5df0927381c18b13a3d6c4fc55611
- SHA256
  
  9e94446daa31307c1f06f8d452ace86c16c1306eb32c16a083fc30c7f1d6ccc4
- SHA512
  
  8691aac89ff7c0080bce9c6c3133bc0d6cc0274daa8eb8d3427eb6929a4201d83c2108185d725183d5641c273e5992469575567a402129a4c731a078291e3a21
- SSDEEP
  
  1536:uWWTwV4fVhuN3yFBm1H/1zT+yLUcAeOud1h+OhDQTcuxVQwV4MjW:2wVUPE34B4HZntAJud1h+OhMTcQqwV
Score

10^/10

guloader downloader guloader
- Guloader,Cloudeye
  A shellcode based downloader first seen in 2020.
  downloader guloader
- Guloader payload
  guloader
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

guloaderdownloaderguloader

behavioral2