GuLoader Analysis
guloader malware powershell vbsThis week I was browsing MalwareBazaar for interesting samples and came across a GuLoader VBS upload. I’m still pretty new to malware analysis and I haven’t done anything with VBS files, so I thought I’d take the chance to go through the malware and see what it was doing.
Note: This ended up being a very long post, even with truncated code samples…
GuLoader (or the sample I used) has three stages.
Read more...