guloader | 571ede27a5022871ed09441ef9dfb87d818d897d556b8113f24b9d98b1ce6b1d | Triage

Submit
Reports

Overview

overview

Static

static

3

Known.exe

windows10-2004-x64

Sharing

General

Target

Known
Size

64KB
Sample

240111-ktts5schan
MD5

f8275c8a22942ab41bebdb784575a074
SHA1

41e13e4600ee2f7e71604d6d6807f20446ab31c4
SHA256

571ede27a5022871ed09441ef9dfb87d818d897d556b8113f24b9d98b1ce6b1d
SHA512

8642c5ce144b3ce87254da7712e399ee77834f796f47a1c3210fa763143299a186384c8bfcb523e552701824575fd0d8a5bfa08e2338175fbb091937bb1b724a
SSDEEP

768:forHXlrfHNra34YE7sFl/jBsZiBeYCQkLD8yyNCN:aHVrft+zE7Il/9lBZ2D8yn

Score

10^/10

guloader downloader guloader

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

Known.exe

Resource

win10v2004-20231215-en

guloader downloader guloader

windows10-2004-x64

16 signatures

150 seconds

Malware Config

Extracted

Family

guloader

C2

https://mindforcehypnosis.com/hyn/decemberomo_WqYCt57.bin

xor.base64

Targets

- Target
  
  Known
- Size
  
  64KB
- MD5
  
  f8275c8a22942ab41bebdb784575a074
- SHA1
  
  41e13e4600ee2f7e71604d6d6807f20446ab31c4
- SHA256
  
  571ede27a5022871ed09441ef9dfb87d818d897d556b8113f24b9d98b1ce6b1d
- SHA512
  
  8642c5ce144b3ce87254da7712e399ee77834f796f47a1c3210fa763143299a186384c8bfcb523e552701824575fd0d8a5bfa08e2338175fbb091937bb1b724a
- SSDEEP
  
  768:forHXlrfHNra34YE7sFl/jBsZiBeYCQkLD8yyNCN:aHVrft+zE7Il/9lBZ2D8yn
Score

10^/10

guloader downloader guloader
- Guloader,Cloudeye
  A shellcode based downloader first seen in 2020.
  downloader guloader
- Guloader payload
  guloader
behavioral1

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

guloaderdownloaderguloader

© 2018-2024

Terms | Privacy