Overview

overview

10

Static

static

1

pa collect...051.js

windows10-2004-x64

10

Resubmissions

30-05-2024 14:20

240530-rnhbgsce55 10

30-05-2024 13:53

240530-q6358sbh65 10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    pa collective agreement pay 76051.js

  • Size

    5.5MB

  • Sample

    240530-rnhbgsce55

  • MD5

    1a0e19e6f46dbefb41f10c8d261af234

  • SHA1

    c55fa2a9d06cb8988b3e2580450caf9fbb174dce

  • SHA256

    c1a0d5d96a97b3a114cbe5d0df23b481be8890ec3952f91d0182b9fc9fec1ec5

  • SHA512

    39470d2396df10fd88a0b1b7be48d625a61d4bfcb698f0d296cdf8c03b3ca83218680aae82028b0597d3a071558729766b8156183e748aee31c80c47417be8a2

  • SSDEEP

    49152:KXytwpCQK+V0XytwpCQK+V0XytwpCQK+V0XytwpCQK+V0XytwpCQK+Vp:KCCCCP

Score
10/10
gootloaderexecutionloader

Malware Config

Targets

    • Target

      pa collective agreement pay 76051.js

    • Size

      5.5MB

    • MD5

      1a0e19e6f46dbefb41f10c8d261af234

    • SHA1

      c55fa2a9d06cb8988b3e2580450caf9fbb174dce

    • SHA256

      c1a0d5d96a97b3a114cbe5d0df23b481be8890ec3952f91d0182b9fc9fec1ec5

    • SHA512

      39470d2396df10fd88a0b1b7be48d625a61d4bfcb698f0d296cdf8c03b3ca83218680aae82028b0597d3a071558729766b8156183e748aee31c80c47417be8a2

    • SSDEEP

      49152:KXytwpCQK+V0XytwpCQK+V0XytwpCQK+V0XytwpCQK+V0XytwpCQK+Vp:KCCCCP

    Score
    10/10
    gootloaderexecutionloader

    • GootLoader

      JavaScript loader known for delivering other families such as Gootkit and Cobaltstrike.

      loadergootloader

    • Blocklisted process makes network request

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks