General

  • Target

    21-September-8040006145.zip

  • Size

    404KB

  • Sample

    220921-y6d54shad4

  • MD5

    458042bd7d6d04f20dffb4792caeb5f0

  • SHA1

    7ed27d86ad841ae1671d89be5fb78dacbaf475af

  • SHA256

    98cab93346258d8e5c1d8ab5229eab022cd2100f98411e19ee68f335ca51ed1c

  • SHA512

    cf7cc764f9badff9cd7a6d1380f8e971b2e1b4ff9cfc263abc680cbc0bd845dbdd332da4866753ff5b5198444ca9e5f7e4d06301ecf6084376f9f53c5b3d86cc

  • SSDEEP

    12288:agIEE7LvSxeCbOt6yLb1PRGTuJUU3WDzVBrQert7oWh:aR57jVCq57iuJ93WDJNQW+Wh

Score
10/10

Malware Config

Targets

    • Target

      13592b4e3f6000db8427fa5c3692a1972f44dfdf3b180e38eae4103daf9462b1

    • Size

      483KB

    • MD5

      cb11a7e32701625ea11133b73b7bb1b0

    • SHA1

      874b1f4ab65630447b739f8e40bfee8a631143d2

    • SHA256

      13592b4e3f6000db8427fa5c3692a1972f44dfdf3b180e38eae4103daf9462b1

    • SHA512

      19b801885c3e852fad19e71c048f675278cacbee6d161c3c0d8d1fa43e4a768f4b46b7a03af9e983c68b62a47b610c4e87c1bbf48f762094eaae7520f9acd233

    • SSDEEP

      6144:qQgqSTulaxl4GhEfD3xA7yiagmd4iLAmWn65SF:2XhEfD3xFiagmd4iLAmWn6m

    Score
    1/10
    • Target

      b02b4f081889993391182c26d06627640ca6613ff63040ceb158dae1d959a8eb

    • Size

      483KB

    • MD5

      3d2e9bc8309b08a8972d597abed1fbb8

    • SHA1

      95706a7e68acb4bdfacd2994b0765ae5f98c3dc1

    • SHA256

      b02b4f081889993391182c26d06627640ca6613ff63040ceb158dae1d959a8eb

    • SHA512

      39857a256869118f1e5895a83bcbfe6d6130e9d4a071ed4c753d9037a078e8332f9ddf31803a91380b180552c134feae9bba688d48d7babaa23979370f0df97e

    • SSDEEP

      6144:GkQdXSTulaxl4khEfD3xA7siagmd4iLAmWR63jF:rhhEfD3xHiagmd4iLAmWR6h

    Score
    10/10
    • GootLoader

      JavaScript loader known for delivering other families such as Gootkit and Cobaltstrike.

    • Blocklisted process makes network request

    • Target

      f0219ad148476fcf0d8da7aa0f703c80f990861e337af9abdddc13003cb46abf

    • Size

      483KB

    • MD5

      5ed9865bdf1315ecff0e1efb3afe5f60

    • SHA1

      8c05ef5c155513c6127b7272b728992b1d3150c9

    • SHA256

      f0219ad148476fcf0d8da7aa0f703c80f990861e337af9abdddc13003cb46abf

    • SHA512

      1dd1ee5b47550ff2343bf27b1ebef13cb53c3dbde11791c2b63cde906c52d9cc33d9330d70670df5790c7f6b5e67e2c9f3a8fe26105bdc0d278fc64265b8df7e

    • SSDEEP

      6144:3QLMSNulaxl4HhEfDpHA7WiagmdsiLAmWR63SF:cahEfDpHviagmdsiLAmWR6k

    Score
    10/10
    • GootLoader

      JavaScript loader known for delivering other families such as Gootkit and Cobaltstrike.

    • Blocklisted process makes network request

    • Target

      f53f5d376b733fff2c8a419e93bc5ef37d8ae9423086d8c5a6e781b1f2fd7bc6

    • Size

      483KB

    • MD5

      1e83f4f79ea8b87ed073ed09ad5525b1

    • SHA1

      233b525aa7a5ea4b3043ca0031ca7a381bd6d716

    • SHA256

      f53f5d376b733fff2c8a419e93bc5ef37d8ae9423086d8c5a6e781b1f2fd7bc6

    • SHA512

      b4331f266a0c7939dfa258770ff9c690d39db0392f614b0df1e44d1edb2e4b08f185c125f49a8bf5d09742bc2ba57fba4ee90b16822db05b0f93dd59373c87a0

    • SSDEEP

      6144:YQ++GAulaxl43hEfD3xA7WiagmdHiLAmWR6cSQ:YfhEfD3xviagmdHiLAmWR6k

    Score
    10/10
    • GootLoader

      JavaScript loader known for delivering other families such as Gootkit and Cobaltstrike.

    • Blocklisted process makes network request

MITRE ATT&CK Matrix

Tasks