General

  • Target

    united_flight_attendant_union_agreement (dkx).js

  • Size

    291KB

  • Sample

    220914-sln7paafe3

  • MD5

    35ea61041bd263a3a87c98059684b589

  • SHA1

    8132e47d4fba9fdf0cbba9ff8345649a866cf53b

  • SHA256

    64363a18c8e226200c00233cad8ba9b3089ed9663931026c0d3163350cebfefa

  • SHA512

    cc1148f68a5d0df49b00314b48b93f5ee92d1d58a9c9a7d8124113524bfd6d814ba1cf719929449fad0a83f909cf5ed9a68b653a5f5f88f739164fa31b1a5436

  • SSDEEP

    6144:pjLfh6nicf8Z5wETdp1J4mDMz1EsnFyzjwh3zOxPdQ8kUL1IVfzHAKOk1PC:piw4mDeTFydDSVfTAKJZC

Score
10/10

Malware Config

Targets

    • Target

      united_flight_attendant_union_agreement (dkx).js

    • Size

      291KB

    • MD5

      35ea61041bd263a3a87c98059684b589

    • SHA1

      8132e47d4fba9fdf0cbba9ff8345649a866cf53b

    • SHA256

      64363a18c8e226200c00233cad8ba9b3089ed9663931026c0d3163350cebfefa

    • SHA512

      cc1148f68a5d0df49b00314b48b93f5ee92d1d58a9c9a7d8124113524bfd6d814ba1cf719929449fad0a83f909cf5ed9a68b653a5f5f88f739164fa31b1a5436

    • SSDEEP

      6144:pjLfh6nicf8Z5wETdp1J4mDMz1EsnFyzjwh3zOxPdQ8kUL1IVfzHAKOk1PC:piw4mDeTFydDSVfTAKJZC

    Score
    10/10
    • GootLoader

      JavaScript loader known for delivering other families such as Gootkit and Cobaltstrike.

    • Blocklisted process makes network request

MITRE ATT&CK Matrix

Tasks