General
-
Target
Withdrawal_agreement_nhs (tgp).js
-
Size
483KB
-
Sample
220831-vkac9ahahk
-
MD5
63a30eab86a28bfd99519fd0dac26b52
-
SHA1
74c3d627307d665baa5d2501736420e0494296e8
-
SHA256
caa500ee45d64e8f0025570eb8658f22ae6078668af7b1f496614dfd2b1a9f42
-
SHA512
94df7101d5ce36b033e3bf5aca5ba5dfecfb9867adfbe2ca065720426c8ce31936393887d0e0570a67d69cfedf391470abc31adabc7f3fa78b151ad41e4ea0aa
-
SSDEEP
6144:UQMOZTulaxl4shEfDlxY7Xiagmd4iLAmWR65Lw:BVhEfDlxEiagmd4iLAmWR6G
Static task
static1
Behavioral task
behavioral1
Sample
Withdrawal_agreement_nhs (tgp).js
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
Withdrawal_agreement_nhs (tgp).js
Resource
win10v2004-20220812-en
Malware Config
Targets
-
-
Target
Withdrawal_agreement_nhs (tgp).js
-
Size
483KB
-
MD5
63a30eab86a28bfd99519fd0dac26b52
-
SHA1
74c3d627307d665baa5d2501736420e0494296e8
-
SHA256
caa500ee45d64e8f0025570eb8658f22ae6078668af7b1f496614dfd2b1a9f42
-
SHA512
94df7101d5ce36b033e3bf5aca5ba5dfecfb9867adfbe2ca065720426c8ce31936393887d0e0570a67d69cfedf391470abc31adabc7f3fa78b151ad41e4ea0aa
-
SSDEEP
6144:UQMOZTulaxl4shEfDlxY7Xiagmd4iLAmWR65Lw:BVhEfDlxEiagmd4iLAmWR6G
Score10/10-
GootLoader
JavaScript loader known for delivering other families such as Gootkit and Cobaltstrike.
-
Blocklisted process makes network request
-