33.0.0 White Diamond
IR
502290
CloudBasic
19:19:10
13/10/2021
PEDIDO.exe
default.jbs
Windows 10 64 bit v1803 with Office Professional Plus 2016, Chrome 85, IE 11, Adobe Reader DC 19, Java 8 Update 211
WINDOWS
83046fa32e563289dbd98efe27f884f4
fdacb1537161c011f5803471b6971225010d4e71
6b3d06b20b3ae5a3dd8d3a2eb9eb1f1a86d9ba5eb59f5ef75cfa1b2f28dcfd6c
Win32 Executable (generic) a (10002005/4) 99.15%
true
false
false
false
68
0
100
5
0
5
false
Found malware configuration
Found potential dummy code loops (likely to delay analysis)
Tries to detect virtualization through RDTSC time measurements
Yara detected GuLoader
C2 URLs / IPs found in malware configuration