Overview

overview

10

Static

static

3

e5dae822bb...25.exe

windows7-x64

10

e5dae822bb...25.exe

windows10-2004-x64

10

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e5dae822bb8f37e4acc5c45d07dcdbcb4259df72f762e21fe7369ab6a4c1a125.exe

  • Size

    450KB

  • Sample

    241204-d2hmhsvpck

  • MD5

    0be3f2cb6b42caa09085030ccf55be16

  • SHA1

    fe6f62d6df037c7962d0a7d17fe41fd0178cbe5d

  • SHA256

    e5dae822bb8f37e4acc5c45d07dcdbcb4259df72f762e21fe7369ab6a4c1a125

  • SHA512

    81feb54745c1fac28ade9aa8e676f8c54abf08c32802946b82c4471192ff0d3fb46283843986c6548a7a2d651c74525ab328133b623b9a8c8b5e3dec40c9bdab

  • SSDEEP

    12288:aOLOS9sMkCNYzF9pEt5NjAcCep+nTDeqJ5:DOS9sMZ2zfpyIcDQH1J5

Score
10/10
guloaderdiscoverydownloader

Malware Config

Targets

    • Target

      e5dae822bb8f37e4acc5c45d07dcdbcb4259df72f762e21fe7369ab6a4c1a125.exe

    • Size

      450KB

    • MD5

      0be3f2cb6b42caa09085030ccf55be16

    • SHA1

      fe6f62d6df037c7962d0a7d17fe41fd0178cbe5d

    • SHA256

      e5dae822bb8f37e4acc5c45d07dcdbcb4259df72f762e21fe7369ab6a4c1a125

    • SHA512

      81feb54745c1fac28ade9aa8e676f8c54abf08c32802946b82c4471192ff0d3fb46283843986c6548a7a2d651c74525ab328133b623b9a8c8b5e3dec40c9bdab

    • SSDEEP

      12288:aOLOS9sMkCNYzF9pEt5NjAcCep+nTDeqJ5:DOS9sMZ2zfpyIcDQH1J5

    Score
    10/10
    guloaderdiscoverydownloader

    • Guloader family

      guloader

    • Guloader,Cloudeye

      A shellcode based downloader first seen in 2020.

      downloaderguloader

    • Loads dropped DLL

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

    • Target

      $PLUGINSDIR/System.dll

    • Size

      11KB

    • MD5

      b853d5d2361ade731e33e882707efc34

    • SHA1

      c58b1aeabdf1cbb8334ef8797e7aceaa7a1cb6be

    • SHA256

      f0cd96e0b6e40f92ad1aa0efacde833bae807b92fca19bf062c1cf8acf29484b

    • SHA512

      8ea31d82ffa6f58dab5632fe72690d3a6db0be65aec85fc8a1f71626773c0974dcebefae17bcf67c4c56ef442545e985eea0b348ff6e4fc36740640092b08d69

    • SSDEEP

      192:eA2HS+ihg200uWz947Wzvxu6v0MI7JOde+Ij5Z77dslFsEf:mS62Gw947ExuGDI7J8EF7KIE

    Score
    3/10
    discovery
    behavioral3behavioral4

MITRE ATT&CK Enterprise v15

Tasks