General

  • Target

    Withdrawal_agreement_nhs (tgp).js

  • Size

    483KB

  • Sample

    220831-vkac9ahahk

  • MD5

    63a30eab86a28bfd99519fd0dac26b52

  • SHA1

    74c3d627307d665baa5d2501736420e0494296e8

  • SHA256

    caa500ee45d64e8f0025570eb8658f22ae6078668af7b1f496614dfd2b1a9f42

  • SHA512

    94df7101d5ce36b033e3bf5aca5ba5dfecfb9867adfbe2ca065720426c8ce31936393887d0e0570a67d69cfedf391470abc31adabc7f3fa78b151ad41e4ea0aa

  • SSDEEP

    6144:UQMOZTulaxl4shEfDlxY7Xiagmd4iLAmWR65Lw:BVhEfDlxEiagmd4iLAmWR6G

Score
10/10

Malware Config

Targets

    • Target

      Withdrawal_agreement_nhs (tgp).js

    • Size

      483KB

    • MD5

      63a30eab86a28bfd99519fd0dac26b52

    • SHA1

      74c3d627307d665baa5d2501736420e0494296e8

    • SHA256

      caa500ee45d64e8f0025570eb8658f22ae6078668af7b1f496614dfd2b1a9f42

    • SHA512

      94df7101d5ce36b033e3bf5aca5ba5dfecfb9867adfbe2ca065720426c8ce31936393887d0e0570a67d69cfedf391470abc31adabc7f3fa78b151ad41e4ea0aa

    • SSDEEP

      6144:UQMOZTulaxl4shEfDlxY7Xiagmd4iLAmWR65Lw:BVhEfDlxEiagmd4iLAmWR6G

    Score
    10/10
    • GootLoader

      JavaScript loader known for delivering other families such as Gootkit and Cobaltstrike.

    • Blocklisted process makes network request

MITRE ATT&CK Matrix

Tasks