guloader | 526ef69454eb8169d6ddc03bbc723ddd81a02417c664827427a86d1789b9dda9 | Triage

Sharing

General

Target

997031ad2aa54466505c8e23063131e5_JaffaCakes118
Size

184KB
Sample

241125-fy28vszrax
MD5

997031ad2aa54466505c8e23063131e5
SHA1

1b2fec0a8e4f256a7cdf100557ab566b3cef3c14
SHA256

526ef69454eb8169d6ddc03bbc723ddd81a02417c664827427a86d1789b9dda9
SHA512

77b823a70ecfd8b03745d416f051e0feefce575e51627b1035a48fc3bd4d1c12fc9ccdae7df383fd8610fc2078742679690a1a8633be4c9710d043a929d3f304
SSDEEP

1536:d4SJ1Y+uyD3Pr+I7viK9anJf+vI0uJEVVgks53/opiq9OfFAQgXLzTkUXE9j0zeZ:Rd/+8H9w+g06EVK/UN9OWzzXqj0zu+4

Score

10^/10

guloader discovery downloader

Malware Config

Targets

- Target
  
  Final-Revised-Commission-DebitNote-12450-76123--BLMEDUU0610003--EBKG016897656.exe
- Size
  
  96KB
- MD5
  
  2875ae54d610bd3888c71e99eb26a6a0
- SHA1
  
  57f51245a2785b46905d245b574fd1d87c0d7231
- SHA256
  
  a46f3a6d3786eff29c52c09ef084b15f989f74279128ed249749839c6c07db26
- SHA512
  
  52174e841deeccebf1fef31d0bfac290e9b55ba2bfc43e4075a8541cf9074b1bc384a7165d2c418fab749ed84b15fcc28cd663a892c94bd568b88664ebc4fc69
- SSDEEP
  
  768:OA5g6YnnCULo6uDUMV35TWOo5A0XiRze93LSC6AyI1/U6jgAckIMq/1r1b2Ft1Zg:R5g64uDDV3Y60XikLSCT/ajn1rxcg
Score

10^/10

guloader discovery downloader
- Guloader family
  guloader
- Guloader,Cloudeye
  A shellcode based downloader first seen in 2020.
  downloader guloader
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

guloaderdiscoverydownloader

behavioral2

guloaderdiscoverydownloader