guloader | 146571ea18a986bccdcb49207c2f768cc24861174fc247d43c533d593e806758 | Triage

Sharing

General

Target

JaffaCakes118_146571ea18a986bccdcb49207c2f768cc24861174fc247d43c533d593e806758
Size

229KB
Sample

241229-eyqz6asmgn
MD5

fa998462f4092abead693aec41909a6c
SHA1

b650a419e262face1aea13ff7ac701239cba57b2
SHA256

146571ea18a986bccdcb49207c2f768cc24861174fc247d43c533d593e806758
SHA512

9c63e8ac6954923331c115f6a542773fcd4a40750fa7661a18c75adb6eadab1b5f131ea9c89bd79489507147b8990986d8407aaeab6e26586a59ab4cf8ac2498
SSDEEP

3072:qJvOxg0E89CfnVCHRLlC9eZIBwRgntVBI+BvVBKFQ5CbXrQwbr2whxo0Bk:qJGhLH9c50ovXKFQGXrQmQQk

Score

10^/10

guloader discovery downloader

Malware Config

Targets

- Target
  
  Specification and Delivery PEYONCO REFR NEW ZEALAND.pdf(78KB).com
- Size
  
  304KB
- MD5
  
  f3a0917d47e0079ee8568892a00bf9ef
- SHA1
  
  287a9f9e29437c308b7011c196937637a36b10b9
- SHA256
  
  8db08b6ff00e6073bc3b448842ae17277fee4ed8473794895cd2825f84ea4160
- SHA512
  
  62d9565f75c128f6da30cb129f22baf42eee407e9ea54980a360c7bbb30bc21e9a17c7672ab8db0319ba0844793b1a3d0b272abf740ea01aecd5b3fa549415d7
- SSDEEP
  
  6144:NbE/HUCKfouuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuWuuuuuuuuuuuuuuuuuuuO:NbWKfouuuuuuuuuuuuuuuuuuuuuuuuuG
Score

10^/10

discovery guloader downloader
- Guloader family
  guloader
- Guloader,Cloudeye
  A shellcode based downloader first seen in 2020.
  downloader guloader
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  12KB
- MD5
  
  cff85c549d536f651d4fb8387f1976f2
- SHA1
  
  d41ce3a5ff609df9cf5c7e207d3b59bf8a48530e
- SHA256
  
  8dc562cda7217a3a52db898243de3e2ed68b80e62ddcb8619545ed0b4e7f65a8
- SHA512
  
  531d6328daf3b86d85556016d299798fa06fefc81604185108a342d000e203094c8c12226a12bd6e1f89b0db501fb66f827b610d460b933bd4ab936ac2fd8a88
- SSDEEP
  
  192:Zjvco0qWTlt70m5Aj/lQ0sEWD/wtYbBHFNaDybC7y+XBz0QPi:FHQlt70mij/lQRv/9VMjzr
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  HPSUPD-Win32Lib.dll
- Size
  
  165KB
- MD5
  
  e3559d63559966e632ac6789d067cef3
- SHA1
  
  f2f1f0fa26b3b30dd691da8ec93c66e066d33130
- SHA256
  
  4564832b5e174d12453f23ff07155eaaf911380efcfd74bfceb0e203ccddfdc1
- SHA512
  
  fe4797b20f837bb684696a15e8552ba55374e60937560bb36be1df609739ec43411b2c92c18f60f3ceb2383dab5b1227626e84066a08ecf77a705abc24352303
- SSDEEP
  
  3072:B1KqTbAA+RPEap9uzLF0i7QYgMcEtJZ49gEjb0+:B1Kqx+v9UFpUPM
Score

1^/10
behavioral5 behavioral6

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

guloaderdiscoverydownloader

behavioral3

behavioral4

behavioral5

behavioral6