guloader | 1bf5d0352077d44df01931aba5b9f9e9259114a64b793b9c0e7e5fcb35186a53 | Triage

Sharing

General

Target

JaffaCakes118_07d2c3ef2e0067bf3ab7ebb589e87481
Size

80KB
Sample

250106-cds8nsskc1
MD5

07d2c3ef2e0067bf3ab7ebb589e87481
SHA1

e597e8afddde27e2b7016d513544e46196e9cdfc
SHA256

1bf5d0352077d44df01931aba5b9f9e9259114a64b793b9c0e7e5fcb35186a53
SHA512

4a64d07850e81ceec6117dcd1736c7208090e1e70ddb63d8f0bb0250fbcb8d6e9368453b26d05919477d782c0e7824e38be26b849a831a2b66c457eaebfad5d1
SSDEEP

768:AMif7qfj9JhIfiVqzQ36Oai9Icnu+gZJWBZ+uMEIRfhTGNOUYADhHuqB/0FL:AMiHwb30i9urJUZvZ0EwmhLB

Score

10^/10

guloader discovery downloader

Malware Config

Targets

- Target
  
  JaffaCakes118_07d2c3ef2e0067bf3ab7ebb589e87481
- Size
  
  80KB
- MD5
  
  07d2c3ef2e0067bf3ab7ebb589e87481
- SHA1
  
  e597e8afddde27e2b7016d513544e46196e9cdfc
- SHA256
  
  1bf5d0352077d44df01931aba5b9f9e9259114a64b793b9c0e7e5fcb35186a53
- SHA512
  
  4a64d07850e81ceec6117dcd1736c7208090e1e70ddb63d8f0bb0250fbcb8d6e9368453b26d05919477d782c0e7824e38be26b849a831a2b66c457eaebfad5d1
- SSDEEP
  
  768:AMif7qfj9JhIfiVqzQ36Oai9Icnu+gZJWBZ+uMEIRfhTGNOUYADhHuqB/0FL:AMiHwb30i9urJUZvZ0EwmhLB
Score

10^/10

guloader discovery downloader
- Guloader family
  guloader
- Guloader,Cloudeye
  A shellcode based downloader first seen in 2020.
  downloader guloader
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

guloaderdiscoverydownloader

behavioral2

guloaderdiscoverydownloader