guloader | 26a9b2cd54c39b6039661455b99bc91917db640cc78d8192a06c55ea3f32c309 | Triage

Sharing

General

Target

26a9b2cd54c39b6039661455b99bc91917db640cc78d8192a06c55ea3f32c309.exe
Size

296KB
Sample

250208-eytfaavmhs
MD5

8e582cc7faaec584a12a152e79d5c5b6
SHA1

5292b3bf1809128bd0c51d6a549fc951c29197eb
SHA256

26a9b2cd54c39b6039661455b99bc91917db640cc78d8192a06c55ea3f32c309
SHA512

6864d8b63bdb4a854fe23d2ff631ed5a2dc5d476d146c7fe8d78d4e41c16a1000523d84aa62e5316deb2c6729f83959f1120087709e8214fd1a0525c565af732
SSDEEP

6144:EWHMOd10kD5dpEuIw7egSd9bVdj/wpcroMY5Pl9QaKsOt/Gedgb:E5Od/D59negU/dAc+PMhtrub

Score

10^/10

guloader discovery downloader

Malware Config

Targets

- Target
  
  26a9b2cd54c39b6039661455b99bc91917db640cc78d8192a06c55ea3f32c309.exe
- Size
  
  296KB
- MD5
  
  8e582cc7faaec584a12a152e79d5c5b6
- SHA1
  
  5292b3bf1809128bd0c51d6a549fc951c29197eb
- SHA256
  
  26a9b2cd54c39b6039661455b99bc91917db640cc78d8192a06c55ea3f32c309
- SHA512
  
  6864d8b63bdb4a854fe23d2ff631ed5a2dc5d476d146c7fe8d78d4e41c16a1000523d84aa62e5316deb2c6729f83959f1120087709e8214fd1a0525c565af732
- SSDEEP
  
  6144:EWHMOd10kD5dpEuIw7egSd9bVdj/wpcroMY5Pl9QaKsOt/Gedgb:E5Od/D59negU/dAc+PMhtrub
Score

10^/10

guloader discovery downloader
- Guloader family
  guloader
- Guloader,Cloudeye
  A shellcode based downloader first seen in 2020.
  downloader guloader
- Downloads MZ/PE file
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

guloaderdiscoverydownloader