General
-
Target
What_is_a_domiciliation_agreement (ie).js
-
Size
483KB
-
Sample
220912-zdbpysebc9
-
MD5
140a1f3782485e4b5581ac9c104e18e7
-
SHA1
fed7b919c3b533e9c6ed9903d3b9ed1614b774b8
-
SHA256
924f71e9039d10700fc39873204af6a2ab40b1df7715b59c44f9feeed70c5eb4
-
SHA512
402214f801ceb5a7f925698815edde70c50649117ac96c922f6cf1ce5bcbf27cf4509674493e0234794196bf96ce625bcdb203e66cb9bcc262968c2f9562f69c
-
SSDEEP
6144:wQVgibulaxl4ihEfDgvA7Wiagmd4iLAmWR6NIF:BLhEfDgvviagmd4iLAmWR6E
Static task
static1
Behavioral task
behavioral1
Sample
What_is_a_domiciliation_agreement (ie).js
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
What_is_a_domiciliation_agreement (ie).js
Resource
win10v2004-20220812-en
Malware Config
Targets
-
-
Target
What_is_a_domiciliation_agreement (ie).js
-
Size
483KB
-
MD5
140a1f3782485e4b5581ac9c104e18e7
-
SHA1
fed7b919c3b533e9c6ed9903d3b9ed1614b774b8
-
SHA256
924f71e9039d10700fc39873204af6a2ab40b1df7715b59c44f9feeed70c5eb4
-
SHA512
402214f801ceb5a7f925698815edde70c50649117ac96c922f6cf1ce5bcbf27cf4509674493e0234794196bf96ce625bcdb203e66cb9bcc262968c2f9562f69c
-
SSDEEP
6144:wQVgibulaxl4ihEfDgvA7Wiagmd4iLAmWR6NIF:BLhEfDgvviagmd4iLAmWR6E
Score10/10-
GootLoader
JavaScript loader known for delivering other families such as Gootkit and Cobaltstrike.
-
Blocklisted process makes network request
-