guloader | a758f7ee57c6dcccc0b63276a47125db6ccd9ed8a4ce0f7217187326e2b4fbdf | Triage

Sharing

General

Target

a758f7ee57c6dcccc0b63276a47125db6ccd9ed8a4ce0f7217187326e2b4fbdf
Size

132KB
Sample

230129-tx9s7sfa6w
MD5

e78c711ec72c356d59e1a0b74859718c
SHA1

d24bc8acecb1b818d87d5c988b21e01bd7acfb3b
SHA256

a758f7ee57c6dcccc0b63276a47125db6ccd9ed8a4ce0f7217187326e2b4fbdf
SHA512

0e6627fdc65291ca05b7fcb9d3134f3c3b49b25606540192f9dd555e813b13ad84e017f8b0d583f90cd68c150116d5eee7329205b014eb36707d0f468dcf6f95
SSDEEP

1536:nmnVNuADosHDum4izsnQFyazxrZkr7RPp5Pk7YHOwQ:Wuy4XQFyazx9YNhYSOw

Score

10^/10

guloader downloader

Malware Config

Extracted

Family

guloader

C2

https://onedrive.live.com/download?cid=604AA6C584DB9137&resid=604AA6C584DB9137%21124&authkey=AO7BkNNuodxtFuA

xor.base64

Targets

- Target
  
  a758f7ee57c6dcccc0b63276a47125db6ccd9ed8a4ce0f7217187326e2b4fbdf
- Size
  
  132KB
- MD5
  
  e78c711ec72c356d59e1a0b74859718c
- SHA1
  
  d24bc8acecb1b818d87d5c988b21e01bd7acfb3b
- SHA256
  
  a758f7ee57c6dcccc0b63276a47125db6ccd9ed8a4ce0f7217187326e2b4fbdf
- SHA512
  
  0e6627fdc65291ca05b7fcb9d3134f3c3b49b25606540192f9dd555e813b13ad84e017f8b0d583f90cd68c150116d5eee7329205b014eb36707d0f468dcf6f95
- SSDEEP
  
  1536:nmnVNuADosHDum4izsnQFyazxrZkr7RPp5Pk7YHOwQ:Wuy4XQFyazx9YNhYSOw
Score

10^/10

guloader downloader
- Guloader,Cloudeye
  A shellcode based downloader first seen in 2020.
  downloader guloader
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

guloaderdownloader

behavioral2

guloaderdownloader