gootloader | 17f6626dbe0995d97a0415480e88a6df8203c25a7d33973464172d547ab726d1 | Triage

Submit
Reports

Overview

overview

Static

static

Va_private...wv).js

windows10-1703-x64

Resubmissions

02-08-2022 18:51

220802-xhw6cabcgr 8

02-08-2022 18:40

220802-xbggbahhe7 1

Sharing

General

Target

2-Aug-3-7804926139.zip
Size

88KB
Sample

220802-xhw6cabcgr
MD5

b17c626eb4d062da701f2643b648afd3
SHA1

898e7b6104e6085d0d4faba22fd55c220b1470ea
SHA256

17f6626dbe0995d97a0415480e88a6df8203c25a7d33973464172d547ab726d1
SHA512

b312e7648fbe22f67ff099a7ce9391cbbfc991bdf3ced04fce73325b53636bdbc4b71022ec7581ea80a903065499f9a93752dbbb08570864882116be7639f286

Score

10^/10

gootloader loader

Static task

static1

Behavioral task

behavioral1

Sample

Va_private_road_maintenance_agreement_form (qxwv).js

Resource

win10-20220718-en

gootloader loader

windows10-1703-x64

2 signatures

300 seconds

Malware Config

Targets

- Target
  
  Va_private_road_maintenance_agreement_form (qxwv).js
- Size
  
  291KB
- MD5
  
  60561bc42019ed9ccc63162a96dac876
- SHA1
  
  07eee2b7752760212a2672be4be3bd3bff156e76
- SHA256
  
  212cc46479d29249e4f3e1d7aad6222b84190ed0e5f7627531ed84fcf160f7eb
- SHA512
  
  e8ce259fad5487cb65c97aef595e257731541f16402ea36c2ae251313e6e35843b1efad00c51877b248d62f8d162f47327f297d75d2d89794b0235716a4b0042
Score

10^/10

gootloader loader
- GootLoader
  JavaScript loader known for delivering other families such as Gootkit and Cobaltstrike.
  loader gootloader
- Blocklisted process makes network request
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

gootloaderloader

© 2018-2024

Terms | Privacy