Overview

overview

10

Static

static

3

New invita...DF.exe

windows7-x64

10

New invita...DF.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    New invitation to BID - Details 0076522 RFQ - PDF.exe

  • Size

    175KB

  • Sample

    230704-kvka4adc5s

  • MD5

    998a133423474da1785aadd7528d204f

  • SHA1

    ebcd198775ac1a49ef58cebd83d09a6aed0f68e5

  • SHA256

    eddc9be66d96863e7c959794e8d63562d967e48d05797f2147bf1156d9517903

  • SHA512

    0e8b4644eb6d04cf47ff1ef25e7f6363a839a21f2f2329e4e2d1caea22b077e77f138a5dd5b64fd82dca2978f44e322d49aad651569894d2aac9752e745b99ed

  • SSDEEP

    3072:VAwC5wP7dePo8fCcXbbeg/M0x77DNJYITWZ33Bf33OZhPWpEENW+gk+vF778Zrdq:Vx/Mdegk87gtDHGOpEENW+kvF77uhe4I

Score
10/10
guloaderdiscoverydownloader

Malware Config

Targets

    • Target

      New invitation to BID - Details 0076522 RFQ - PDF.exe

    • Size

      175KB

    • MD5

      998a133423474da1785aadd7528d204f

    • SHA1

      ebcd198775ac1a49ef58cebd83d09a6aed0f68e5

    • SHA256

      eddc9be66d96863e7c959794e8d63562d967e48d05797f2147bf1156d9517903

    • SHA512

      0e8b4644eb6d04cf47ff1ef25e7f6363a839a21f2f2329e4e2d1caea22b077e77f138a5dd5b64fd82dca2978f44e322d49aad651569894d2aac9752e745b99ed

    • SSDEEP

      3072:VAwC5wP7dePo8fCcXbbeg/M0x77DNJYITWZ33Bf33OZhPWpEENW+gk+vF778Zrdq:Vx/Mdegk87gtDHGOpEENW+kvF77uhe4I

    Score
    10/10
    guloaderdiscoverydownloader

    • Guloader,Cloudeye

      A shellcode based downloader first seen in 2020.

      downloaderguloader

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks