guloader | 3a0eee3681eeacd4fb6443ea3c67054c92f7f2f0cc03c4cce73e9d2ca1d78b63 | Triage

Sharing

General

Target

3a0eee3681eeacd4fb6443ea3c67054c92f7f2f0cc03c4cce73e9d2ca1d78b63
Size

64KB
Sample

230129-t2zh2adg89
MD5

852859b74e4bcd96cfe745e24e2c37af
SHA1

b5f4e10475e28c9b3d4bc0ba651ad9ad60703e54
SHA256

3a0eee3681eeacd4fb6443ea3c67054c92f7f2f0cc03c4cce73e9d2ca1d78b63
SHA512

7c16e07f957b0244b85fe8083b9faa6831e5f9b4372dd383c63e0b80c9f27cfbe6c1fb8de2fefd8aa33b318bf73e259340bf931756f9cf27b6dc10ad580fb73b
SSDEEP

768:BjVDUGqruL4t4EyC3hJSErYiS2weXH+oUEYP3TGXlk23E0DaJ9+q0Sxfaw2BN804:bDUGKVt4P+bDwowHPkT+QpHIgDU

Score

10^/10

guloader downloader

Malware Config

Extracted

Family

guloader

C2

https://beta.vxinnovations.com/OZD_zqVmzeze250.bin

xor.base64

Targets

- Target
  
  3a0eee3681eeacd4fb6443ea3c67054c92f7f2f0cc03c4cce73e9d2ca1d78b63
- Size
  
  64KB
- MD5
  
  852859b74e4bcd96cfe745e24e2c37af
- SHA1
  
  b5f4e10475e28c9b3d4bc0ba651ad9ad60703e54
- SHA256
  
  3a0eee3681eeacd4fb6443ea3c67054c92f7f2f0cc03c4cce73e9d2ca1d78b63
- SHA512
  
  7c16e07f957b0244b85fe8083b9faa6831e5f9b4372dd383c63e0b80c9f27cfbe6c1fb8de2fefd8aa33b318bf73e259340bf931756f9cf27b6dc10ad580fb73b
- SSDEEP
  
  768:BjVDUGqruL4t4EyC3hJSErYiS2weXH+oUEYP3TGXlk23E0DaJ9+q0Sxfaw2BN804:bDUGKVt4P+bDwowHPkT+QpHIgDU
Score

10^/10

guloader downloader
- Guloader,Cloudeye
  A shellcode based downloader first seen in 2020.
  downloader guloader
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

guloaderdownloader

behavioral2

guloaderdownloader