Overview

overview

10

Static

static

1

winprofile

windows7-x64

10

winprofile

windows10-1703-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1c559f7ac1b631739a10e90da2bcbe6fc838b907725afb7623fc1ed72139a184

  • Size

    194KB

  • Sample

    230208-cwpcfagc2z

  • MD5

    41fed48d58a6e38da740c8698e90287a

  • SHA1

    07fda5e846608bcda49a82c608cb57a705d8f123

  • SHA256

    1c559f7ac1b631739a10e90da2bcbe6fc838b907725afb7623fc1ed72139a184

  • SHA512

    89614d08eb182920497822c6888bde0e443941c674e6d2e9ecf62708a3d6fc4502d64714351c641e2dd43793641f3a4b26f3a663d51ed63db0473421a7c31c9b

  • SSDEEP

    6144:Z92uhNYpy9clxU/iVvihKE8ffU7KINkl:zhC8EaiVvihYeKz

Score
10/10
guloaderdownloader

Malware Config

Targets

    • Target

      1c559f7ac1b631739a10e90da2bcbe6fc838b907725afb7623fc1ed72139a184

    • Size

      194KB

    • MD5

      41fed48d58a6e38da740c8698e90287a

    • SHA1

      07fda5e846608bcda49a82c608cb57a705d8f123

    • SHA256

      1c559f7ac1b631739a10e90da2bcbe6fc838b907725afb7623fc1ed72139a184

    • SHA512

      89614d08eb182920497822c6888bde0e443941c674e6d2e9ecf62708a3d6fc4502d64714351c641e2dd43793641f3a4b26f3a663d51ed63db0473421a7c31c9b

    • SSDEEP

      6144:Z92uhNYpy9clxU/iVvihKE8ffU7KINkl:zhC8EaiVvihYeKz

    Score
    10/10
    guloaderdownloader

    • Guloader,Cloudeye

      A shellcode based downloader first seen in 2020.

      downloaderguloader

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks