gootloader | 35ad05a182b7c0dff84b6e0411f65deaaacddeae6cffdc902a5f6b8d89111c07 | Triage

Submit
Reports

Overview

overview

Static

static

1

pa collect...113.js

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

pa collective agreement pay 13113.js
Size

6.6MB
Sample

240606-pzrcesec6w
MD5

18c679d05f76a0b89ec03bb963350e7d
SHA1

7e62d2cdd32959e0cced72a2e18dee26f03f378d
SHA256

35ad05a182b7c0dff84b6e0411f65deaaacddeae6cffdc902a5f6b8d89111c07
SHA512

70744208c002d03b4f3930972a394511aebc57d88b7233cf5228f56ff7b586acc2bd4feddc1496ed3c0109c5a05e2ddcc83012dae083638fa5e5ef8f63ed6ae0
SSDEEP

49152:UBytwpCQK+xyBytwpCQK+xyBytwpCQK+xyBytwpCQK+xyBytwpCQK+xyBytwpCQl:Uiiiii5

Score

10^/10

gootloader execution loader

Static task

static1

Behavioral task

behavioral1

Sample

pa collective agreement pay 13113.js

Resource

win10v2004-20240508-en

gootloader execution loader

windows10-2004-x64

10 signatures

300 seconds

Malware Config

Targets

- Target
  
  pa collective agreement pay 13113.js
- Size
  
  6.6MB
- MD5
  
  18c679d05f76a0b89ec03bb963350e7d
- SHA1
  
  7e62d2cdd32959e0cced72a2e18dee26f03f378d
- SHA256
  
  35ad05a182b7c0dff84b6e0411f65deaaacddeae6cffdc902a5f6b8d89111c07
- SHA512
  
  70744208c002d03b4f3930972a394511aebc57d88b7233cf5228f56ff7b586acc2bd4feddc1496ed3c0109c5a05e2ddcc83012dae083638fa5e5ef8f63ed6ae0
- SSDEEP
  
  49152:UBytwpCQK+xyBytwpCQK+xyBytwpCQK+xyBytwpCQK+xyBytwpCQK+xyBytwpCQl:Uiiiii5
Score

10^/10

gootloader execution loader
- GootLoader
  JavaScript loader known for delivering other families such as Gootkit and Cobaltstrike.
  loader gootloader
- Blocklisted process makes network request
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

JavaScript

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

gootloaderexecutionloader

© 2018-2025

Terms | Privacy