General
-
Target
31-Aug-7903016193.zip
-
Size
98KB
-
Sample
220831-qrzjhageg5
-
MD5
3cda42cbdb125d80df56444682cbde7f
-
SHA1
7972254669db28b7874460cb615335d964a32ff6
-
SHA256
22c56ba4c0aa84cc3d8754393e49dfe07f308186a49f9ec1694cdd9203b531cd
-
SHA512
591ef78b8b6724c41e4fffc996f955443f0016d54750773d0ad0dad6df029af01beca6bad64814f550083acdf65c100857ec83aba18437dfa711b3eb3aecbb7a
-
SSDEEP
3072:EwwSjXAXvXtY8vr1YYlTS7kRV+ZSZ3wHsEG7v9FtVIwUx:NjwXvXO8veYlZecgMEelGwUx
Static task
static1
Behavioral task
behavioral1
Sample
Bws_agreement_2020 (cff).js
Resource
win10-20220812-en
Malware Config
Targets
-
-
Target
Bws_agreement_2020 (cff).js
-
Size
483KB
-
MD5
1eb0afac12c4bae3a3fd238dd38feddc
-
SHA1
135b3e89fd114fc590655df6a575800416afe379
-
SHA256
5f6a9c6f3d8e243fce0af61ba82d82ce081020906b9b07490ea4988e1a0d7a8b
-
SHA512
c6958530bdc1d74516bcd1a78688cc9ff358178f0a625e783dcb9dfaeb7a5c216c0255c2a18227a75eb00a9d906fe5a4a7f6ee474732734bcf48b639d8b8275d
-
SSDEEP
6144:GQBXSEulaxl4khEfD3NA7Wiagmd4iLAmWh6CSF:kwhEfD3Nviagmd4iLAmWh6f
Score10/10-
GootLoader
JavaScript loader known for delivering other families such as Gootkit and Cobaltstrike.
-
Blocklisted process makes network request
-