General

  • Target

    31-Aug-7903016193.zip

  • Size

    98KB

  • Sample

    220831-qrzjhageg5

  • MD5

    3cda42cbdb125d80df56444682cbde7f

  • SHA1

    7972254669db28b7874460cb615335d964a32ff6

  • SHA256

    22c56ba4c0aa84cc3d8754393e49dfe07f308186a49f9ec1694cdd9203b531cd

  • SHA512

    591ef78b8b6724c41e4fffc996f955443f0016d54750773d0ad0dad6df029af01beca6bad64814f550083acdf65c100857ec83aba18437dfa711b3eb3aecbb7a

  • SSDEEP

    3072:EwwSjXAXvXtY8vr1YYlTS7kRV+ZSZ3wHsEG7v9FtVIwUx:NjwXvXO8veYlZecgMEelGwUx

Score
10/10

Malware Config

Targets

    • Target

      Bws_agreement_2020 (cff).js

    • Size

      483KB

    • MD5

      1eb0afac12c4bae3a3fd238dd38feddc

    • SHA1

      135b3e89fd114fc590655df6a575800416afe379

    • SHA256

      5f6a9c6f3d8e243fce0af61ba82d82ce081020906b9b07490ea4988e1a0d7a8b

    • SHA512

      c6958530bdc1d74516bcd1a78688cc9ff358178f0a625e783dcb9dfaeb7a5c216c0255c2a18227a75eb00a9d906fe5a4a7f6ee474732734bcf48b639d8b8275d

    • SSDEEP

      6144:GQBXSEulaxl4khEfD3NA7Wiagmd4iLAmWh6CSF:kwhEfD3Nviagmd4iLAmWh6f

    Score
    10/10
    • GootLoader

      JavaScript loader known for delivering other families such as Gootkit and Cobaltstrike.

    • Blocklisted process makes network request

MITRE ATT&CK Matrix

Tasks