Overview

overview

10

Static

static

1

pa collect...935.js

windows10-2004-x64

10

Resubmissions

10-06-2024 13:29

240610-qrbgnsxcmc 10

10-06-2024 13:21

240610-qlm9aaxeqj 10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    pa collective agreement pay 13935.js

  • Size

    4.4MB

  • Sample

    240610-qrbgnsxcmc

  • MD5

    528358cafbaf1cfa6419409d6f6e0cd5

  • SHA1

    041357f7e759e426cb779868537686e3a6d8d84d

  • SHA256

    7f324c4b7ba441b783ec1b02072f86047066d8ad9377876f290e476a6df7ed2f

  • SHA512

    3c39fbd4318a9f202deb665023e95211b0a9f31ee943442c9bd3bb043df1ffb376aff46c2dea64bee68b3982cf209b9c148f6398155792bd9740aaa226f44876

  • SSDEEP

    49152:4ytwpCQK+PGytwpCQK+PGytwpCQK+PGytwpCQK+Pp:P

Score
10/10
gootloaderexecutionloader

Malware Config

Targets

    • Target

      pa collective agreement pay 13935.js

    • Size

      4.4MB

    • MD5

      528358cafbaf1cfa6419409d6f6e0cd5

    • SHA1

      041357f7e759e426cb779868537686e3a6d8d84d

    • SHA256

      7f324c4b7ba441b783ec1b02072f86047066d8ad9377876f290e476a6df7ed2f

    • SHA512

      3c39fbd4318a9f202deb665023e95211b0a9f31ee943442c9bd3bb043df1ffb376aff46c2dea64bee68b3982cf209b9c148f6398155792bd9740aaa226f44876

    • SSDEEP

      49152:4ytwpCQK+PGytwpCQK+PGytwpCQK+PGytwpCQK+Pp:P

    Score
    10/10
    gootloaderexecutionloader

    • GootLoader

      JavaScript loader known for delivering other families such as Gootkit and Cobaltstrike.

      loadergootloader

    • Blocklisted process makes network request

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks