General
-
Target
California_surplus_lines_due_diligence_form (mxvsw).js
-
Size
483KB
-
Sample
220907-lzcbqabff8
-
MD5
0dfe209fa967d66333b12e8e9600d3dd
-
SHA1
642eaee37bf514f418d2df32a87b161228c9f65b
-
SHA256
d79747853972fde1d445a9c6facab65abef36cfd1a0db6b3b47b78cd0f7f675e
-
SHA512
0ba9f6b6436dc8a14968bfbe3e9cd50cdb13cab534b59893e4d476691aa2cf072d164271e76f0021692382dcce0e0425644c8be6cf4641a748e39d3f9d0ff97d
-
SSDEEP
6144:WQGpXWTula/l4khEfD3xArWiagmd4iLAmWg6lSF:njhEfD3xTiagmd4iLAmWg6i
Static task
static1
Behavioral task
behavioral1
Sample
California_surplus_lines_due_diligence_form (mxvsw).js
Resource
win10-20220812-en
Malware Config
Targets
-
-
Target
California_surplus_lines_due_diligence_form (mxvsw).js
-
Size
483KB
-
MD5
0dfe209fa967d66333b12e8e9600d3dd
-
SHA1
642eaee37bf514f418d2df32a87b161228c9f65b
-
SHA256
d79747853972fde1d445a9c6facab65abef36cfd1a0db6b3b47b78cd0f7f675e
-
SHA512
0ba9f6b6436dc8a14968bfbe3e9cd50cdb13cab534b59893e4d476691aa2cf072d164271e76f0021692382dcce0e0425644c8be6cf4641a748e39d3f9d0ff97d
-
SSDEEP
6144:WQGpXWTula/l4khEfD3xArWiagmd4iLAmWg6lSF:njhEfD3xTiagmd4iLAmWg6i
Score10/10-
GootLoader
JavaScript loader known for delivering other families such as Gootkit and Cobaltstrike.
-
Blocklisted process makes network request
-