guloader | c43608211c7db28d18ce4fcc8f7b6a7c323280be29ce6308c783a9d1e9545e07 | Triage

Submit
Reports

Overview

overview

Static

static

3

12d720d026...18.exe

windows7-x64

12d720d026...18.exe

windows10-2004-x64

Sharing

General

Target

12d720d026b8966840e532b95a55e60c_JaffaCakes118
Size

48KB
Sample

240626-wan94axhkn
MD5

12d720d026b8966840e532b95a55e60c
SHA1

f4616cbc28aaa40342703a23bf086fe9e850af31
SHA256

c43608211c7db28d18ce4fcc8f7b6a7c323280be29ce6308c783a9d1e9545e07
SHA512

c1d3c305ce92c589a880496c912ea805bc363792cfb023fe15a9c3c884375a71eb8a766045c0298f6bde2e4ca35878f55424ed62388cd5f983910ea72977a794
SSDEEP

384:K24lzGYX8yA2UZ8uYkSr6hO0kraMbl5eaTuZmHg+qilGi3Rj:izGYsyZUarmhhk2kl5S74R

Score

10^/10

guloader downloader

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

12d720d026b8966840e532b95a55e60c_JaffaCakes118.exe

Resource

win7-20240611-en

guloader downloader

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

12d720d026b8966840e532b95a55e60c_JaffaCakes118.exe

Resource

win10v2004-20240508-en

guloader downloader

windows10-2004-x64

2 signatures

150 seconds

Malware Config

Extracted

Family

guloader

C2

http://dmcg.sg/bin_xVXIC194.bin

xor.base64

Targets

- Target
  
  12d720d026b8966840e532b95a55e60c_JaffaCakes118
- Size
  
  48KB
- MD5
  
  12d720d026b8966840e532b95a55e60c
- SHA1
  
  f4616cbc28aaa40342703a23bf086fe9e850af31
- SHA256
  
  c43608211c7db28d18ce4fcc8f7b6a7c323280be29ce6308c783a9d1e9545e07
- SHA512
  
  c1d3c305ce92c589a880496c912ea805bc363792cfb023fe15a9c3c884375a71eb8a766045c0298f6bde2e4ca35878f55424ed62388cd5f983910ea72977a794
- SSDEEP
  
  384:K24lzGYX8yA2UZ8uYkSr6hO0kraMbl5eaTuZmHg+qilGi3Rj:izGYsyZUarmhhk2kl5S74R
Score

10^/10

guloader downloader
- Guloader,Cloudeye
  A shellcode based downloader first seen in 2020.
  downloader guloader
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

guloaderdownloader

behavioral2

guloaderdownloader

© 2018-2024

Terms | Privacy