guloader | b2f392b8c2ae727262d8c3552ec1b2e29e579b5110f52bf770638d80630c7647 | Triage

Submit
Reports

Overview

overview

Static

static

3

f2822fc541...18.exe

windows7-x64

f2822fc541...18.exe

windows10-2004-x64

Sharing

General

Target

f2822fc54146a48c7a8931e64a7c77f8_JaffaCakes118
Size

124KB
Sample

240922-v9kwaasanq
MD5

f2822fc54146a48c7a8931e64a7c77f8
SHA1

106c9bc8fd05c73b7efb58d04fdd92bfed0f040d
SHA256

b2f392b8c2ae727262d8c3552ec1b2e29e579b5110f52bf770638d80630c7647
SHA512

493c4db53d1f32c83e7a3fd1c50df427558b79909602c54fdd4ce493443d45d8a73ce2bfaa926a25c078d3a9c9361eb21622f5dd3687d290c23d10688dd8bde7
SSDEEP

1536:SGtY0DCwZNAVxRudbg0EFqTuxS3E3NeBbeunOS8EN6XD:HrCKQL8TwS354LD

Score

10^/10

guloader discovery downloader guloader

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

f2822fc54146a48c7a8931e64a7c77f8_JaffaCakes118.exe

Resource

win7-20240903-en

guloader discovery downloader guloader

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

f2822fc54146a48c7a8931e64a7c77f8_JaffaCakes118.exe

Resource

win10v2004-20240802-en

guloader discovery downloader guloader

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Extracted

Family

guloader

C2

https://drive.google.com/uc?export=download&id=1txL3dODUH18_IsAzhtWz2pjcVqanyllF

xor.base64

Targets

- Target
  
  f2822fc54146a48c7a8931e64a7c77f8_JaffaCakes118
- Size
  
  124KB
- MD5
  
  f2822fc54146a48c7a8931e64a7c77f8
- SHA1
  
  106c9bc8fd05c73b7efb58d04fdd92bfed0f040d
- SHA256
  
  b2f392b8c2ae727262d8c3552ec1b2e29e579b5110f52bf770638d80630c7647
- SHA512
  
  493c4db53d1f32c83e7a3fd1c50df427558b79909602c54fdd4ce493443d45d8a73ce2bfaa926a25c078d3a9c9361eb21622f5dd3687d290c23d10688dd8bde7
- SSDEEP
  
  1536:SGtY0DCwZNAVxRudbg0EFqTuxS3E3NeBbeunOS8EN6XD:HrCKQL8TwS354LD
Score

10^/10

guloader discovery downloader guloader
- Guloader,Cloudeye
  A shellcode based downloader first seen in 2020.
  downloader guloader
- Guloader payload
  guloader
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

guloaderdiscoverydownloaderguloader

behavioral2

guloaderdiscoverydownloaderguloader

© 2018-2025

Terms | Privacy