Overview

overview

10

Static

static

3

b9c7b19bc9...27.exe

windows7-x64

1

b9c7b19bc9...27.exe

windows10-2004-x64

10

Analysis

  • max time kernel
    142s
  • max time network
    154s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240226-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240226-enlocale:en-usos:windows10-2004-x64system
  • submitted
    07/03/2024, 22:10

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b9c7b19bc90fb0d88f40c957fecc4127.exe

  • Size

    328KB

  • MD5

    b9c7b19bc90fb0d88f40c957fecc4127

  • SHA1

    81361f5c5e05f205e75d911daee03ee1c2a7d577

  • SHA256

    5180eca198f8e740653d11b5b7d536cbfe3e9f7f7c6ed23b63695ef35658b18f

  • SHA512

    d892c1a1d2c7ad13a4c4bc5712a902417079ac3aac6e398d3a51cf2adf5014721b323723a656411d62a3a8c38beb9e9a405e61f915d8b5af5441dc1c785ed0c6

  • SSDEEP

    6144:YzuHiDGboW9eliQ4wkkk6fJydlo6WbxW9eliQ4wPDGbEzuH:Y8MW9elihmfJydlCdW9elihfg

Score
10/10
guloaderdownloader

Malware Config

Signatures

  • Guloader,Cloudeye

    A shellcode based downloader first seen in 2020.

    downloaderguloader
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\b9c7b19bc90fb0d88f40c957fecc4127.exe
    "C:\Users\Admin\AppData\Local\Temp\b9c7b19bc90fb0d88f40c957fecc4127.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:2564

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2564-2-0x0000000002370000-0x0000000002381000-memory.dmp

    Filesize

    68KB

    Download