General

  • Target

    29-Aug-7924476135.zip

  • Size

    186KB

  • Sample

    220829-qlkhdsbab9

  • MD5

    68f1555ec53ccd271a17e2ff984273e8

  • SHA1

    4d26f0377162deaa8a936be0cfa4b223c7fc0bcc

  • SHA256

    8c707a615f6d2a79641e3ed7398a3e8b9f3c1889d96bb9312a8234290fd9857b

  • SHA512

    4856397f68517c08e8a349726adcb7e6ba596dadcc548b1a6a871c1744a44fad8a269feaf31425918eb5d95c5e2b6a98068ccdbbc5d3461fa528cc9f25abb8ea

  • SSDEEP

    3072:KyPxuYqj0hrBgM7JtcYDyzb+d1b8Tv4piDU+PtuUnpWfOf/zU9Z2sU3GyNZwO:xxuYOur6s7NyzC1bSAOxU8pWfazapyNT

Score
10/10

Malware Config

Targets

    • Target

      1a2ccb7a95413bfebfc4e5ba6b93cdad3b9b2575bd5fdd663f969c68d3673a7c

    • Size

      483KB

    • MD5

      c5a5c354d2babcb10bc36d017785bbcb

    • SHA1

      f439bf3916980bf08b021bf4247bbce312c28aac

    • SHA256

      1a2ccb7a95413bfebfc4e5ba6b93cdad3b9b2575bd5fdd663f969c68d3673a7c

    • SHA512

      6ec9b8fa81d82c5582011a5a36a0c02ba056073679449782da287f0b885b8132a9f30196402fc200dce72e5d16960fb7a919a37f2493400d64c0b61a54be1366

    • SSDEEP

      6144:7QaTSwulaGl4khEfD30A7Wiagmd4iLAmWX6NOF:Q3hEfD30viagmd4iLAmWX6u

    Score
    10/10
    • GootLoader

      JavaScript loader known for delivering other families such as Gootkit and Cobaltstrike.

    • Blocklisted process makes network request

    • Target

      1ed45858120dda1e5e393fe1eb87757de9cfa421853b27cd1e247c198fc8a3e3

    • Size

      354KB

    • MD5

      9f7d27433f4e9d289635c55083ee0bb0

    • SHA1

      1b96be82b697e835b903c6c22799c8e4e55e285c

    • SHA256

      1ed45858120dda1e5e393fe1eb87757de9cfa421853b27cd1e247c198fc8a3e3

    • SHA512

      204b5f3d176624eddf3e8991fe3718fc8b47a7b73b42c25a38077128776a0f9cc358e0cd209cde2b5f4d669a6d951b66f8cf3e546e09a9997d8d87b9fea96ecc

    • SSDEEP

      6144:iCzqBL1BLe115u5N5p5lHBoiKTY/vRHSuhP345hiq5b9ldkcLX+oVbJfFqtbtZnG:iCOLe115u5N5p5lHOiKTY/vRHSuhP345

    Score
    1/10

MITRE ATT&CK Enterprise v6

Tasks