gootloader | 43367f43db761b7d1774720cd37ec2dd3b747e00cfa4fd1255543bf1863df6d5 | Triage

Submit
Reports

Overview

overview

Static

static

1

pa collect...096.js

windows10-2004-x64

Sharing

General

Target

pa collective agreement pay 2096.js
Size

1.7MB
Sample

240225-rjv2saec8y
MD5

130a52a64c66c1e31319d3fad76872ea
SHA1

1850fc44c2ecbfcc8830c1915d32feb66dc6cdc6
SHA256

43367f43db761b7d1774720cd37ec2dd3b747e00cfa4fd1255543bf1863df6d5
SHA512

2d6fc22e7fd5bfab5589ffa1841e4edaff717418e7518809b9fdeb4322f85d21512d9b6da2ba6ab454a763d9d83152daa932280b468b2d6920f6600751d3942e
SSDEEP

12288:SeMDXYbhfw4Y/Nz2z+FIE5AlQlDu90TsDJWx5u1xNydLpg8hC6gQl6GfwgqqQkvK:Semobhfj8mWHu1/wD5HroObm

Score

10^/10

gootloader loader

Static task

static1

Behavioral task

behavioral1

Sample

pa collective agreement pay 2096.js

Resource

win10v2004-20240221-en

gootloader loader

windows10-2004-x64

9 signatures

600 seconds

Malware Config

Targets

- Target
  
  pa collective agreement pay 2096.js
- Size
  
  1.7MB
- MD5
  
  130a52a64c66c1e31319d3fad76872ea
- SHA1
  
  1850fc44c2ecbfcc8830c1915d32feb66dc6cdc6
- SHA256
  
  43367f43db761b7d1774720cd37ec2dd3b747e00cfa4fd1255543bf1863df6d5
- SHA512
  
  2d6fc22e7fd5bfab5589ffa1841e4edaff717418e7518809b9fdeb4322f85d21512d9b6da2ba6ab454a763d9d83152daa932280b468b2d6920f6600751d3942e
- SSDEEP
  
  12288:SeMDXYbhfw4Y/Nz2z+FIE5AlQlDu90TsDJWx5u1xNydLpg8hC6gQl6GfwgqqQkvK:Semobhfj8mWHu1/wD5HroObm
Score

10^/10

gootloader loader
- GootLoader
  JavaScript loader known for delivering other families such as Gootkit and Cobaltstrike.
  loader gootloader
- Blocklisted process makes network request
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

gootloaderloader

© 2018-2024

Terms | Privacy