General

  • Target

    nsis_guloader.bin

  • Size

    638KB

  • MD5

    fb8d0ae425b4e14bca8fc3eecab23baf

  • SHA1

    db25c79437e303d21b137f73d114c5bdfb6f9d98

  • SHA256

    e037f37fa8553539837baf5602a5180b83497536e9c285707929c46fdcc8cb18

  • SHA512

    d49d8baaec4a1505026cb15b9482932c2fce964a9cc9018e70a825ee90482da2c89a265c1211969870a204a18a789e16ef66204533eefcfdb8a277ad190a14e7

  • SSDEEP

    12288:f0VN1HuZEzOOe3MgfEQz/b+JJLSnKJHCzwHBW:MHlzxmMMEKyFNC/

Score
3/10

Malware Config

Signatures

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs

Files

  • nsis_guloader.bin
    .exe windows:5 windows x86 arch:x86

    e871f39e81b4aa977737b07cee050825


    Headers

    Imports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:6 windows x86 arch:x86

    595a3fd71239f605bb02d7a5e48fd4df


    Headers

    Imports

    Exports

    Sections

  • Guldure.une
  • Hooklet.uhd
  • Roundtree123.txt
  • Stropharia.Tho
  • Tilstillede/bi.bar
  • Tilstillede/cavalierish.ise
  • Tilstillede/kludders.und
  • Tilstillede/lnk.non
  • Tilstillede/missilformularers.lit
  • Trindelingens/nonabstractedness.tav
  • Trindelingens/outskipped.met
  • Trindelingens/prisregulering.for
  • Trindelingens/subtrude.std
  • Trindelingens/totalindtryks.pro
  • Trindelingens/trypetid.oxb
  • Trindelingens/vicegreves.kol
  • ansigtsudtrykket.hne
  • antitrochanter.adj