guloader | 0bb22a9609a12319cfdada9b2bcfef4e4a038441d9eb707a92958b02a0e974b8 | Triage

Sharing

General

Target

0bb22a9609a12319cfdada9b2bcfef4e4a038441d9eb707a92958b02a0e974b8
Size

96KB
Sample

230129-whbzqshe6s
MD5

3ac28d89503bf9bd8ac610b812367d20
SHA1

17bd201dfd9aa9777b10e8c026d1607f29e3781b
SHA256

0bb22a9609a12319cfdada9b2bcfef4e4a038441d9eb707a92958b02a0e974b8
SHA512

0250d74f673b617a1a69915d4c4a765917243ce43291f128373bddd846f80aeea7cd2bdd1c2677de74e61bb7245cfb97f85198f3d4bbc6725b3b3341265ee832
SSDEEP

1536:8bLxrsPF+dKaJgKtxFWkEXGlNZWquF6sfILilKmbL:cLCKgAr8M8MgILIL

Score

10^/10

guloader downloader

Malware Config

Extracted

Family

guloader

C2

https://xixaofemw.com/bin_TzEfbcdxW254.bin

xor.base64

Targets

- Target
  
  0bb22a9609a12319cfdada9b2bcfef4e4a038441d9eb707a92958b02a0e974b8
- Size
  
  96KB
- MD5
  
  3ac28d89503bf9bd8ac610b812367d20
- SHA1
  
  17bd201dfd9aa9777b10e8c026d1607f29e3781b
- SHA256
  
  0bb22a9609a12319cfdada9b2bcfef4e4a038441d9eb707a92958b02a0e974b8
- SHA512
  
  0250d74f673b617a1a69915d4c4a765917243ce43291f128373bddd846f80aeea7cd2bdd1c2677de74e61bb7245cfb97f85198f3d4bbc6725b3b3341265ee832
- SSDEEP
  
  1536:8bLxrsPF+dKaJgKtxFWkEXGlNZWquF6sfILilKmbL:cLCKgAr8M8MgILIL
Score

10^/10

guloader downloader
- Guloader,Cloudeye
  A shellcode based downloader first seen in 2020.
  downloader guloader
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

guloaderdownloader

behavioral2

guloaderdownloader