guloader | f7017096c344c3df58adba0efc5577f2002ed8e1008c59e22ffebdce4d7d9bc1 | Triage

Submit
Reports

Overview

overview

Static

static

3

b6b0040772...91.exe

windows7-x64

b6b0040772...91.exe

windows10-2004-x64

Sharing

General

Target

b6b0040772eb7b23cd8416529e7ce391
Size

60KB
Sample

231227-x7zmrscedk
MD5

b6b0040772eb7b23cd8416529e7ce391
SHA1

76ef09808c01e9ab3ae0f538debb99f1f6ec5a30
SHA256

f7017096c344c3df58adba0efc5577f2002ed8e1008c59e22ffebdce4d7d9bc1
SHA512

ae253888141d1f35bff21c4d32ad8f52cb423d328752714a4599a934b6b6a8c34f6baed17168af7927755d40717218181aecb150dc0c2550e70c36c4c54738a0
SSDEEP

768:0QJEkXjonTifI3SIpgKmWrt8bOHjKkZwNZL1tYC2:nekXUn9/KWhXHLwLfS

Score

10^/10

guloader downloader guloader

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

b6b0040772eb7b23cd8416529e7ce391.exe

Resource

win7-20231215-en

guloader downloader guloader

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

b6b0040772eb7b23cd8416529e7ce391.exe

Resource

win10v2004-20231215-en

guloader downloader guloader

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Extracted

Family

guloader

C2

https://mindforcehypnosis.com/hyn/decemberomo_qoNkrbr207.bin

xor.base64

Targets

- Target
  
  b6b0040772eb7b23cd8416529e7ce391
- Size
  
  60KB
- MD5
  
  b6b0040772eb7b23cd8416529e7ce391
- SHA1
  
  76ef09808c01e9ab3ae0f538debb99f1f6ec5a30
- SHA256
  
  f7017096c344c3df58adba0efc5577f2002ed8e1008c59e22ffebdce4d7d9bc1
- SHA512
  
  ae253888141d1f35bff21c4d32ad8f52cb423d328752714a4599a934b6b6a8c34f6baed17168af7927755d40717218181aecb150dc0c2550e70c36c4c54738a0
- SSDEEP
  
  768:0QJEkXjonTifI3SIpgKmWrt8bOHjKkZwNZL1tYC2:nekXUn9/KWhXHLwLfS
Score

10^/10

guloader downloader guloader
- Guloader,Cloudeye
  A shellcode based downloader first seen in 2020.
  downloader guloader
- Guloader payload
  guloader
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

guloaderdownloaderguloader

behavioral2

guloaderdownloaderguloader

© 2018-2024

Terms | Privacy