Overview

overview

10

Static

static

1

california...920.js

windows7-x64

3

california...920.js

windows10-2004-x64

10

Resubmissions

05/04/2024, 22:51

240405-2s5mpaed8w 10

05/04/2024, 22:09

240405-12qz8aee49 10

05/04/2024, 21:44

240405-1lp3zseb94 10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    cde69e630a95af5d7ce0445c10534bc8-sample.zip

  • Size

    6.3MB

  • Sample

    240405-12qz8aee49

  • MD5

    4c347279aacd32331ed649ba33261ce7

  • SHA1

    984ea03f001ab3be29a5217acaeea91368bf97c1

  • SHA256

    2c84d62d067a3abd72485d759dff184aee864fa6b6015c557834f331766be14b

  • SHA512

    9f1df8450138708d0df866cefe24bc735db4df82542657475673fe1c1275f5005e100cf4cb75c488d5cfecfd89822456b6b40e85deaac37fcc3af7ffc996a3fe

  • SSDEEP

    196608:u3WFozDiCo2hArkLhRHrCCouoqhF1RENO98C1l6/kcvYrYU:LoXfo2hDrCCozm798CSlYcU

Score
10/10
gootloaderloader

Malware Config

Targets

    • Target

      california law on heating in rented property 57920.js

    • Size

      28.9MB

    • MD5

      6549d39c02c70808198741b87b6aec8d

    • SHA1

      8a2d9af6453338427b63cd9f7e3020f37ac1aa73

    • SHA256

      faa386a653305f00e34bcd94511480b809b221ebf7205319578ef4ec9c050605

    • SHA512

      8d6f83edec2082e99aa02fb47964828c2d6b0a2e26016720dbbd64430e45c37499a3224c7fdb7f14c679dfc0a68431e0460e4600c969fbdb523a099ef188f839

    • SSDEEP

      49152:v7BZzjCxbgqHlpRwVON0kLhG5JizUYzYBGZP+8Hzm3nI/NlHGy/R3qy/a7gbcEOI:2

    Score
    10/10
    gootloaderloader

    • GootLoader

      JavaScript loader known for delivering other families such as Gootkit and Cobaltstrike.

      loadergootloader

    • Blocklisted process makes network request

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks