guloader | c37edbc2519d882c1092a908dfe71b03c5fe9f7d5082cc918bf672e84ca053ed | Triage

Sharing

General

Target

RFQ03022025AGRAUCONSULTORIA.pdf.exe
Size

887KB
Sample

250211-vke9hatlfl
MD5

4931f08027c6157e8b50bda47039d37b
SHA1

9a0a4ad0558d9f0792f41689360146bb689c018e
SHA256

c37edbc2519d882c1092a908dfe71b03c5fe9f7d5082cc918bf672e84ca053ed
SHA512

652fe6e31752d1793d0906e16cc7a8aae3caa9f4dc857611fc541f5f75499cf91edb16ee9bedb65428a4a502c527377f38855ff03fba9f02ad9e0884d2d8e915
SSDEEP

24576:b3uheoZz+XfHXdkbE6XppnOQIfqDQjHNzPz:b3AZofHQXnyfqmt3

Score

10^/10

guloader discovery downloader

Malware Config

Targets

- Target
  
  RFQ03022025AGRAUCONSULTORIA.pdf.exe
- Size
  
  887KB
- MD5
  
  4931f08027c6157e8b50bda47039d37b
- SHA1
  
  9a0a4ad0558d9f0792f41689360146bb689c018e
- SHA256
  
  c37edbc2519d882c1092a908dfe71b03c5fe9f7d5082cc918bf672e84ca053ed
- SHA512
  
  652fe6e31752d1793d0906e16cc7a8aae3caa9f4dc857611fc541f5f75499cf91edb16ee9bedb65428a4a502c527377f38855ff03fba9f02ad9e0884d2d8e915
- SSDEEP
  
  24576:b3uheoZz+XfHXdkbE6XppnOQIfqDQjHNzPz:b3AZofHQXnyfqmt3
Score

10^/10

discovery guloader downloader
- Guloader family
  guloader
- Guloader,Cloudeye
  A shellcode based downloader first seen in 2020.
  downloader guloader
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  12KB
- MD5
  
  6e55a6e7c3fdbd244042eb15cb1ec739
- SHA1
  
  070ea80e2192abc42f358d47b276990b5fa285a9
- SHA256
  
  acf90ab6f4edc687e94aaf604d05e16e6cfb5e35873783b50c66f307a35c6506
- SHA512
  
  2d504b74da38edc967e3859733a2a9cacd885db82f0ca69bfb66872e882707314c54238344d45945dc98bae85772aceef71a741787922d640627d3c8ae8f1c35
- SSDEEP
  
  192:MenY0qWTlt70IAj/lQ0sEWc/wtYbBH2aDybC7y+XBaIwL:M8+Qlt70Fj/lQRY/9VjjgL
Score

3^/10

discovery
behavioral3 behavioral4

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

guloaderdiscoverydownloader

behavioral3

behavioral4