guloader | 67fc25f92a3074fe21704051a8aa72d438d5a06030cc7630db7e95953a998c90 | Triage

Sharing

General

Target

Rechnungen-2022.exe
Size

616KB
Sample

230208-yrjgaafd87
MD5

59ac1cfddea69fa213b747faad3f0f62
SHA1

a7a2a21106b999828444ad16265ff339a2775f99
SHA256

67fc25f92a3074fe21704051a8aa72d438d5a06030cc7630db7e95953a998c90
SHA512

856534b24f4b0ae0a29a8ed740048b321e15593fed0cdf98bc816d04656e2b5d89042859342e52682e3817d9a9ec825fdda2c3502bc19781295fd40498aab368
SSDEEP

12288:lbif/mHZzu6uhuQgRN6Zuj90Z2upnDgy/HE0P3Q8x78IV7tc4NCp:Rif/mHZzutuQgHt90TnDgck0ILI1tco0

Score

10^/10

guloader downloader

Malware Config

Targets

- Target
  
  Rechnungen-2022.exe
- Size
  
  616KB
- MD5
  
  59ac1cfddea69fa213b747faad3f0f62
- SHA1
  
  a7a2a21106b999828444ad16265ff339a2775f99
- SHA256
  
  67fc25f92a3074fe21704051a8aa72d438d5a06030cc7630db7e95953a998c90
- SHA512
  
  856534b24f4b0ae0a29a8ed740048b321e15593fed0cdf98bc816d04656e2b5d89042859342e52682e3817d9a9ec825fdda2c3502bc19781295fd40498aab368
- SSDEEP
  
  12288:lbif/mHZzu6uhuQgRN6Zuj90Z2upnDgy/HE0P3Q8x78IV7tc4NCp:Rif/mHZzutuQgHt90TnDgck0ILI1tco0
Score

10^/10

guloader downloader
- Guloader,Cloudeye
  A shellcode based downloader first seen in 2020.
  downloader guloader
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

guloaderdownloader