General

  • Target

    Divorce_after_separation_agreement (pnlhh).js

  • Size

    483KB

  • Sample

    220926-rew4aabae5

  • MD5

    a272b01b579b25bdfae1f908732c2946

  • SHA1

    556613fe370c9459a29daf9189e762d65b5e4022

  • SHA256

    edee70cd7c81d57f16195b46f6fac52be21eec34b70178e375062a89f8241fe4

  • SHA512

    e3717281e27229fe2fba79dc947cf4ab4acb5d494cb5afd77c8bd15df1ab981acbaf29a1b5699a33e4e0b2f1994ab9c1291d72e893016ab413c62f16fe627dbe

  • SSDEEP

    6144:iWrQ0CSTWulaxl4khEfD5xA7siagmd4iLAmWR6TFI:xDKhEfD5xjiagmd4iLAmWR6+

Score
10/10

Malware Config

Targets

    • Target

      Divorce_after_separation_agreement (pnlhh).js

    • Size

      483KB

    • MD5

      a272b01b579b25bdfae1f908732c2946

    • SHA1

      556613fe370c9459a29daf9189e762d65b5e4022

    • SHA256

      edee70cd7c81d57f16195b46f6fac52be21eec34b70178e375062a89f8241fe4

    • SHA512

      e3717281e27229fe2fba79dc947cf4ab4acb5d494cb5afd77c8bd15df1ab981acbaf29a1b5699a33e4e0b2f1994ab9c1291d72e893016ab413c62f16fe627dbe

    • SSDEEP

      6144:iWrQ0CSTWulaxl4khEfD5xA7siagmd4iLAmWR6TFI:xDKhEfD5xjiagmd4iLAmWR6+

    Score
    10/10
    • GootLoader

      JavaScript loader known for delivering other families such as Gootkit and Cobaltstrike.

    • Blocklisted process makes network request

MITRE ATT&CK Matrix

Tasks