gootloader | 4a8dd206483b71084346cb468eb864c9a8a7a44d62d367219619611d4a2b4153 | Triage

Submit
Reports

Overview

overview

Static

static

1

pa collect...907.js

windows10-2004-x64

Sharing

General

Target

pa collective agreement pay 14907.js
Size

13.9MB
Sample

240623-q1wtzasflf
MD5

3b4066dc8b4c74928ad4b3eae7e725b3
SHA1

e692e594ae8261b0284c08edb865e40209d65fdf
SHA256

4a8dd206483b71084346cb468eb864c9a8a7a44d62d367219619611d4a2b4153
SHA512

502c22f9475b070f622ac1803d1d342ba34bbd32c0da05a7cd0d96fc95ccf121f44a4965906121e408f6a9f16d12b3147169b09317b74da9570b76535917b85a
SSDEEP

49152:rrH08dPXWR4ba/JOtdF5pHE2lsfiaahM3o43ORV59VDKtD4rH08dPXWR4ba/JOt1:+c43mEc43mEc43ml

Score

10^/10

gootloader execution loader

Static task

static1

Behavioral task

behavioral1

Sample

pa collective agreement pay 14907.js

Resource

win10v2004-20240508-en

gootloader execution loader

windows10-2004-x64

9 signatures

300 seconds

Malware Config

Targets

- Target
  
  pa collective agreement pay 14907.js
- Size
  
  13.9MB
- MD5
  
  3b4066dc8b4c74928ad4b3eae7e725b3
- SHA1
  
  e692e594ae8261b0284c08edb865e40209d65fdf
- SHA256
  
  4a8dd206483b71084346cb468eb864c9a8a7a44d62d367219619611d4a2b4153
- SHA512
  
  502c22f9475b070f622ac1803d1d342ba34bbd32c0da05a7cd0d96fc95ccf121f44a4965906121e408f6a9f16d12b3147169b09317b74da9570b76535917b85a
- SSDEEP
  
  49152:rrH08dPXWR4ba/JOtdF5pHE2lsfiaahM3o43ORV59VDKtD4rH08dPXWR4ba/JOt1:+c43mEc43mEc43ml
Score

10^/10

gootloader execution loader
- GootLoader
  JavaScript loader known for delivering other families such as Gootkit and Cobaltstrike.
  loader gootloader
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

JavaScript

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

gootloaderexecutionloader

© 2018-2024

Terms | Privacy