guloader | 8fa1b07266dff0f36fd46f60eefeb68d3f1084f0a4f5a008c11665eb096ca61f | Triage

Submit
Reports

Overview

overview

Static

static

shell.exe

windows7-x64

shell.exe

windows10-2004-x64

Analysis

max time kernel
118s
max time network
119s
platform
windows10-2004_x64
resource
win10v2004-20250129-en
resource tags

arch:x64arch:x86image:win10v2004-20250129-enlocale:en-usos:windows10-2004-x64system
submitted
03/02/2025, 13:41

Sharing

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

shell.exe

Resource

win7-20240903-en

guloader downloader

windows7-x64

2 signatures

300 seconds

Behavioral task

behavioral2

Sample

shell.exe

Resource

win10v2004-20250129-en

guloader downloader

windows10-2004-x64

2 signatures

300 seconds

Report Analysis Logs

General

Target

shell.exe
Size

296KB
MD5

6e3c7f9685b348dd03eb22489fe83ac0
SHA1

3d0d4a77c3fffc7434c4c1bf62ac799814f43184
SHA256

8fa1b07266dff0f36fd46f60eefeb68d3f1084f0a4f5a008c11665eb096ca61f
SHA512

3dbcf22def3255ec09c837e798099f564e8e00e975bc40151646d8d5e1f931688dae3fb8ca5e96c3e94af7b1889666251b868402f406e74957b55c765390ecb8
SSDEEP

6144:EWHMOd10kD5dpEuIw7egSd9bVdj/wpcroMY5Pl9QaKsOt/Gedg:E5Od/D59negU/dAc+PMhtru

Score

10^/10

guloader downloader

Malware Config

Signatures

Guloader family
guloader
Guloader,Cloudeye
A shellcode based downloader first seen in 2020.
downloader guloader

Processes

C:\Users\Admin\AppData\Local\Temp\shell.exe
"C:\Users\Admin\AppData\Local\Temp\shell.exe"
1⤵
PID:3684

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/3684-0-0x0000000000400000-0x000000000044B000-memory.dmp

Filesize
300KB

Download

© 2018-2025

Terms | Privacy