General
-
Target
c078a1468136d5cfe278e5af4fb13ab375c12a4d52be6c24ba07612429c88565.zip
-
Size
98KB
-
Sample
220912-nthyesghfk
-
MD5
764bfc67ef5aebd06387082b8e46e2df
-
SHA1
7212b52e5557521482369845e802818769e7d822
-
SHA256
19888086235765b3ef90ca010c95869600b9a7af67608012d5050d22bd188f45
-
SHA512
7da99c2a5ed7fb5218c5a9f951e2a93a9b799b1b54e0c1c06d2e16f068b963e97955376b6bfd447aed85a26745d726e7124ba28d91971802f40d098c14d54165
-
SSDEEP
3072:h5L8UuAhSJftLTjUAOM/wR0KFPOr1gzcoazbBFbDD:D8UuZVHjRIR0aOr1glaP3b
Static task
static1
Behavioral task
behavioral1
Sample
How_to_edit_a_legal_document_in_word (gtfo).js
Resource
win10-20220901-en
Malware Config
Targets
-
-
Target
How_to_edit_a_legal_document_in_word (gtfo).js
-
Size
483KB
-
MD5
3301face310e530f016ac62aae10b082
-
SHA1
f1fb2790c07af0eef3cbd5dcdd3948e7cb8e1f44
-
SHA256
4d87f3a6c1ab70ac27bdaa99a9b481a669c0a53c3160d7fe35a6142d3c3297ef
-
SHA512
673fb99444fa6c3a5c2626914c83cd77fbdc5a9ea4c481c2562409c04d6598f530431af70e77ca6fc7a9f9ffe00171fe2fed721a0e02cd1ef328dc78d7386a7c
-
SSDEEP
6144:tQPXNOulaxl42hEfD3zA7Qiagmd4iLAmWR6wSF:iwhEfD3zniagmd4iLAmWR69
Score10/10-
GootLoader
JavaScript loader known for delivering other families such as Gootkit and Cobaltstrike.
-
Blocklisted process makes network request
-