General
-
Target
Divorce_after_separation_agreement (pnlhh).js
-
Size
483KB
-
Sample
220926-rew4aabae5
-
MD5
a272b01b579b25bdfae1f908732c2946
-
SHA1
556613fe370c9459a29daf9189e762d65b5e4022
-
SHA256
edee70cd7c81d57f16195b46f6fac52be21eec34b70178e375062a89f8241fe4
-
SHA512
e3717281e27229fe2fba79dc947cf4ab4acb5d494cb5afd77c8bd15df1ab981acbaf29a1b5699a33e4e0b2f1994ab9c1291d72e893016ab413c62f16fe627dbe
-
SSDEEP
6144:iWrQ0CSTWulaxl4khEfD5xA7siagmd4iLAmWR6TFI:xDKhEfD5xjiagmd4iLAmWR6+
Static task
static1
Behavioral task
behavioral1
Sample
Divorce_after_separation_agreement (pnlhh).js
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
Divorce_after_separation_agreement (pnlhh).js
Resource
win10v2004-20220901-en
Malware Config
Targets
-
-
Target
Divorce_after_separation_agreement (pnlhh).js
-
Size
483KB
-
MD5
a272b01b579b25bdfae1f908732c2946
-
SHA1
556613fe370c9459a29daf9189e762d65b5e4022
-
SHA256
edee70cd7c81d57f16195b46f6fac52be21eec34b70178e375062a89f8241fe4
-
SHA512
e3717281e27229fe2fba79dc947cf4ab4acb5d494cb5afd77c8bd15df1ab981acbaf29a1b5699a33e4e0b2f1994ab9c1291d72e893016ab413c62f16fe627dbe
-
SSDEEP
6144:iWrQ0CSTWulaxl4khEfD5xA7siagmd4iLAmWR6TFI:xDKhEfD5xjiagmd4iLAmWR6+
Score10/10-
GootLoader
JavaScript loader known for delivering other families such as Gootkit and Cobaltstrike.
-
Blocklisted process makes network request
-