guloader | 886448917af772035096b1f16881d1f36bcd18b0313b8b62d4da49e4efd82fad | Triage

Submit
Reports

Overview

overview

Static

static

3

53342231_I...on.exe

windows7-x64

53342231_I...on.exe

windows10-2004-x64

Sharing

General

Target

JaffaCakes118_886448917af772035096b1f16881d1f36bcd18b0313b8b62d4da49e4efd82fad
Size

31KB
Sample

241222-gczraawmdp
MD5

179595f3390c247f0efe7bb42e0da75a
SHA1

74201aabe1e4668e51c8e21d4c840f8ec631dab5
SHA256

886448917af772035096b1f16881d1f36bcd18b0313b8b62d4da49e4efd82fad
SHA512

db66a3b8bb4ae3e733ad74ba7157d6eac1404c767425053469b0d5cd143590870bd4a26cd25f29064f7aba727f85cddbab65c2ae910c7a48a8540893b66c1de3
SSDEEP

768:3KzCK9KLdKkI8YrZbg34JJJv3C4LhTTOHs2pJOZs/R4LQpJcPrj34v:3TK9KLdKjfbgWJ1WHSs2Qpc/34v

Score

10^/10

guloader discovery downloader guloader

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

53342231_Invoice_Confirmation.exe

Resource

win7-20240903-en

guloader discovery downloader guloader

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

53342231_Invoice_Confirmation.exe

Resource

win10v2004-20241007-en

guloader discovery downloader guloader

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Extracted

Family

guloader

C2

https://www.uchemaduforandpartners.com/asset/janomo_ZDqaSv216.bin

xor.base64

Targets

- Target
  
  53342231_Invoice_Confirmation.exe.exe
- Size
  
  92KB
- MD5
  
  98fcd71859d16db1109f6920d544189c
- SHA1
  
  1e05b211c65610102ab3bd89d6a5e69adbd69315
- SHA256
  
  c8d153c8dc54740bef6471505416d1ea55266106065f342921fd10946f1632d1
- SHA512
  
  e5be7b06e13d69fa6330821a45a631dc9504114364f4277a2538c269497cc4c382371b194411bede980bd9abb82ff6720915e1ff93c6d9355c92b6f57a3369ba
- SSDEEP
  
  768:DGvCXMCdIsUxnQKTlufCQ5l0UFpGRnBM5uTK6wWmT9T5PyVNz0:DDXMCCnQWlpyl0UFURK5uO685aVG
Score

10^/10

guloader discovery downloader guloader
- Guloader family
  guloader
- Guloader,Cloudeye
  A shellcode based downloader first seen in 2020.
  downloader guloader
- Guloader payload
  guloader
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

guloaderdiscoverydownloaderguloader

behavioral2

guloaderdiscoverydownloaderguloader

© 2018-2024

Terms | Privacy