gootloader | c8f47dbfc46c2878f96ece788de84672b1d2b230721c3cd577c5b39071cb1070 | Triage

Submit
Reports

Overview

overview

Static

static

1

pa collect...448.js

windows7-x64

pa collect...448.js

windows10-2004-x64

Resubmissions

12/02/2024, 14:31

240212-rvse2aga7z 10

12/02/2024, 14:15

240212-rkhsvahd58 10

Sharing

Copy URL Twitter E-mail

General

Target

pa collective agreement pay 24448.js
Size

3.6MB
Sample

240212-rkhsvahd58
MD5

6314e5e6e94aa922e252e8adc30f551b
SHA1

a81fc5389d61fc35daa35c15d9ec3c72a9d11917
SHA256

c8f47dbfc46c2878f96ece788de84672b1d2b230721c3cd577c5b39071cb1070
SHA512

2aeaefa9ea6b2a95f6dbb9d4a05e028c1ad031a07349088e05617f18b14ac7254c89ae41aa6edea4f27b279f451506ae49cc10170c75744442613df3654b0790
SSDEEP

49152:Nx3ii6gobYQS3QpOVtFBgiAEn0i2pdl8rgx0pPqaeqNn0i2pdliWtAXiAwyfMtAX:NQpwtFBgY

Score

10^/10

gootloader loader

Static task

static1

Behavioral task

behavioral1

Sample

pa collective agreement pay 24448.js

Resource

win7-20231215-en

gootloader loader

windows7-x64

6 signatures

600 seconds

Behavioral task

behavioral2

Sample

pa collective agreement pay 24448.js

Resource

win10v2004-20231215-en

gootloader loader

windows10-2004-x64

9 signatures

600 seconds

Malware Config

Targets

- Target
  
  pa collective agreement pay 24448.js
- Size
  
  3.6MB
- MD5
  
  6314e5e6e94aa922e252e8adc30f551b
- SHA1
  
  a81fc5389d61fc35daa35c15d9ec3c72a9d11917
- SHA256
  
  c8f47dbfc46c2878f96ece788de84672b1d2b230721c3cd577c5b39071cb1070
- SHA512
  
  2aeaefa9ea6b2a95f6dbb9d4a05e028c1ad031a07349088e05617f18b14ac7254c89ae41aa6edea4f27b279f451506ae49cc10170c75744442613df3654b0790
- SSDEEP
  
  49152:Nx3ii6gobYQS3QpOVtFBgiAEn0i2pdl8rgx0pPqaeqNn0i2pdliWtAXiAwyfMtAX:NQpwtFBgY
Score

10^/10

gootloader loader
- GootLoader
  JavaScript loader known for delivering other families such as Gootkit and Cobaltstrike.
  loader gootloader
- Blocklisted process makes network request
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

gootloaderloader

behavioral2

gootloaderloader

© 2018-2025

Terms | Privacy