General
-
Target
8e8c98b0b3f304306d11734bc14c93e14c8b9c3b0f9f44d1df8848e12c4398cc
-
Size
8.8MB
-
Sample
240519-nbspxafc5y
-
MD5
f39488b23a74417d7594d12c383db26f
-
SHA1
408c90514f6f1b450705dd14f361ef11f8cfd68e
-
SHA256
8e8c98b0b3f304306d11734bc14c93e14c8b9c3b0f9f44d1df8848e12c4398cc
-
SHA512
9c15dc2d7857d96c4eb44fb5b2156d8fd306965a4993cf07db9e6e4427ddb96cd7d96cef79c9a574b9f7aaf577fa63c769c1b3e134bae8e362bf55d6a96a88cd
-
SSDEEP
49152:7ytwpCQK+MJytwpCQK+MJytwpCQK+MJytwpCQK+MJytwpCQK+MJytwpCQK+MJyt6:P
Malware Config
Targets
-
-
Target
8e8c98b0b3f304306d11734bc14c93e14c8b9c3b0f9f44d1df8848e12c4398cc
-
Size
8.8MB
-
MD5
f39488b23a74417d7594d12c383db26f
-
SHA1
408c90514f6f1b450705dd14f361ef11f8cfd68e
-
SHA256
8e8c98b0b3f304306d11734bc14c93e14c8b9c3b0f9f44d1df8848e12c4398cc
-
SHA512
9c15dc2d7857d96c4eb44fb5b2156d8fd306965a4993cf07db9e6e4427ddb96cd7d96cef79c9a574b9f7aaf577fa63c769c1b3e134bae8e362bf55d6a96a88cd
-
SSDEEP
49152:7ytwpCQK+MJytwpCQK+MJytwpCQK+MJytwpCQK+MJytwpCQK+MJytwpCQK+MJyt6:P
Score10/10-
GootLoader
JavaScript loader known for delivering other families such as Gootkit and Cobaltstrike.
-
Blocklisted process makes network request
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-