gootloader | 899d5621a993863ce71d9b724849d05bdf4e62302e30c9af65acf280737d2c2f | Triage

Submit
Reports

Overview

overview

Static

static

1

pa collect...508.js

windows10-2004-x64

Resubmissions

29-04-2024 12:57

240429-p7bxpsbb25 10

29-04-2024 12:24

240429-pk6tkaag7y 10

Sharing

General

Target

pa collective agreement pay 1508.js
Size

6.6MB
Sample

240429-pk6tkaag7y
MD5

bba9bfb8176e35034a4fc841b4258d1d
SHA1

96903740e3f173694262e26f63510a4919dc97dc
SHA256

899d5621a993863ce71d9b724849d05bdf4e62302e30c9af65acf280737d2c2f
SHA512

04806d2e8d4d5599e95f3bb51a31ab6f4275bad7e19f073e8ba70daec104bbbdd9ecb6f1c25ec0e02aece7462d3f559cf8f9fec96eece9d896ce33c68c71ddc5
SSDEEP

49152:FytwpCQK+kXytwpCQK+kXytwpCQK+kXytwpCQK+kXytwpCQK+kXytwpCQK+kp:Z

Score

10^/10

gootloader loader

Static task

static1

Behavioral task

behavioral1

Sample

pa collective agreement pay 1508.js

Resource

win10v2004-20240419-en

gootloader loader

windows10-2004-x64

8 signatures

300 seconds

Malware Config

Targets

- Target
  
  pa collective agreement pay 1508.js
- Size
  
  6.6MB
- MD5
  
  bba9bfb8176e35034a4fc841b4258d1d
- SHA1
  
  96903740e3f173694262e26f63510a4919dc97dc
- SHA256
  
  899d5621a993863ce71d9b724849d05bdf4e62302e30c9af65acf280737d2c2f
- SHA512
  
  04806d2e8d4d5599e95f3bb51a31ab6f4275bad7e19f073e8ba70daec104bbbdd9ecb6f1c25ec0e02aece7462d3f559cf8f9fec96eece9d896ce33c68c71ddc5
- SSDEEP
  
  49152:FytwpCQK+kXytwpCQK+kXytwpCQK+kXytwpCQK+kXytwpCQK+kXytwpCQK+kp:Z
Score

10^/10

gootloader loader
- GootLoader
  JavaScript loader known for delivering other families such as Gootkit and Cobaltstrike.
  loader gootloader
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

gootloaderloader

© 2018-2024

Terms | Privacy