guloader | 91db926d13bb0137347991e30a1ccd093e535ff375e102bfd44d9aae15650d21 | Triage

Submit
Reports

Overview

overview

Static

static

3

1dabdd40fc...18.exe

windows7-x64

1dabdd40fc...18.exe

windows10-2004-x64

Sharing

General

Target

1dabdd40fc265a39611acf8c31fb19db_JaffaCakes118
Size

100KB
Sample

240702-2caglsxbnq
MD5

1dabdd40fc265a39611acf8c31fb19db
SHA1

e833264f87c3afe871a2ac3ccd78fc77f5bf2965
SHA256

91db926d13bb0137347991e30a1ccd093e535ff375e102bfd44d9aae15650d21
SHA512

52f85135818d535c5b1bbae76be31ee29e009126ec3bd57dd684b7f6ef8f8a621c5e43c04f63527c796ec1749fdc16a3dc2775d124c594ab97e1d6404b4fe206
SSDEEP

1536:9qWp0jUkHuln1NyXwb/Gr3t65UtfssbkWh7A:9/2jzHi/Gmg0ytfu

Score

10^/10

guloader downloader guloader

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

1dabdd40fc265a39611acf8c31fb19db_JaffaCakes118.exe

Resource

win7-20240611-en

guloader downloader guloader

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

1dabdd40fc265a39611acf8c31fb19db_JaffaCakes118.exe

Resource

win10v2004-20240611-en

guloader downloader guloader

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Extracted

Family

guloader

C2

http://185.161.211.58/Mekino_nanocore_rIfno101.bin

xor.base64

Targets

- Target
  
  1dabdd40fc265a39611acf8c31fb19db_JaffaCakes118
- Size
  
  100KB
- MD5
  
  1dabdd40fc265a39611acf8c31fb19db
- SHA1
  
  e833264f87c3afe871a2ac3ccd78fc77f5bf2965
- SHA256
  
  91db926d13bb0137347991e30a1ccd093e535ff375e102bfd44d9aae15650d21
- SHA512
  
  52f85135818d535c5b1bbae76be31ee29e009126ec3bd57dd684b7f6ef8f8a621c5e43c04f63527c796ec1749fdc16a3dc2775d124c594ab97e1d6404b4fe206
- SSDEEP
  
  1536:9qWp0jUkHuln1NyXwb/Gr3t65UtfssbkWh7A:9/2jzHi/Gmg0ytfu
Score

10^/10

guloader downloader guloader
- Guloader,Cloudeye
  A shellcode based downloader first seen in 2020.
  downloader guloader
- Guloader payload
  guloader
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

guloaderdownloaderguloader

behavioral2

guloaderdownloaderguloader

© 2018-2024

Terms | Privacy