General

  • Target

    c078a1468136d5cfe278e5af4fb13ab375c12a4d52be6c24ba07612429c88565.zip

  • Size

    98KB

  • Sample

    220912-nthyesghfk

  • MD5

    764bfc67ef5aebd06387082b8e46e2df

  • SHA1

    7212b52e5557521482369845e802818769e7d822

  • SHA256

    19888086235765b3ef90ca010c95869600b9a7af67608012d5050d22bd188f45

  • SHA512

    7da99c2a5ed7fb5218c5a9f951e2a93a9b799b1b54e0c1c06d2e16f068b963e97955376b6bfd447aed85a26745d726e7124ba28d91971802f40d098c14d54165

  • SSDEEP

    3072:h5L8UuAhSJftLTjUAOM/wR0KFPOr1gzcoazbBFbDD:D8UuZVHjRIR0aOr1glaP3b

Score
10/10

Malware Config

Targets

    • Target

      How_to_edit_a_legal_document_in_word (gtfo).js

    • Size

      483KB

    • MD5

      3301face310e530f016ac62aae10b082

    • SHA1

      f1fb2790c07af0eef3cbd5dcdd3948e7cb8e1f44

    • SHA256

      4d87f3a6c1ab70ac27bdaa99a9b481a669c0a53c3160d7fe35a6142d3c3297ef

    • SHA512

      673fb99444fa6c3a5c2626914c83cd77fbdc5a9ea4c481c2562409c04d6598f530431af70e77ca6fc7a9f9ffe00171fe2fed721a0e02cd1ef328dc78d7386a7c

    • SSDEEP

      6144:tQPXNOulaxl42hEfD3zA7Qiagmd4iLAmWR6wSF:iwhEfD3zniagmd4iLAmWR69

    Score
    10/10
    • GootLoader

      JavaScript loader known for delivering other families such as Gootkit and Cobaltstrike.

    • Blocklisted process makes network request

MITRE ATT&CK Enterprise v6

Tasks