Overview

overview

10

Static

static

1

government...518.js

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    government of bc collective agreement 78518.js

  • Size

    27.4MB

  • Sample

    240805-mwvjkatfrk

  • MD5

    fd62600eac5bec813d1567207e72f64d

  • SHA1

    78ae3ce1c623893c77aec3a4ece9aac73157d7bb

  • SHA256

    641d47db3b3647543a68e5dd428a4bd5916118a16b06ebb6dd6da3062b9911a7

  • SHA512

    f0a864dbf82d56459a835f2e57c38c52faa74bcdb7a099a9d3e880f112346f1fdbcd6dbe94c4acdf403c50ef705a28d3da0fe4cd56d66925bae91434631b8f74

  • SSDEEP

    49152:YYRxr8uC0NjaCXiRgYRxr8uC0NjaCXiRgYRxr8uC0NjaCXiRgYRxr8uC0NjaCXiF:ceeeF

Score
10/10
gootloaderexecutionloader

Malware Config

Targets

    • Target

      government of bc collective agreement 78518.js

    • Size

      27.4MB

    • MD5

      fd62600eac5bec813d1567207e72f64d

    • SHA1

      78ae3ce1c623893c77aec3a4ece9aac73157d7bb

    • SHA256

      641d47db3b3647543a68e5dd428a4bd5916118a16b06ebb6dd6da3062b9911a7

    • SHA512

      f0a864dbf82d56459a835f2e57c38c52faa74bcdb7a099a9d3e880f112346f1fdbcd6dbe94c4acdf403c50ef705a28d3da0fe4cd56d66925bae91434631b8f74

    • SSDEEP

      49152:YYRxr8uC0NjaCXiRgYRxr8uC0NjaCXiRgYRxr8uC0NjaCXiRgYRxr8uC0NjaCXiF:ceeeF

    Score
    10/10
    gootloaderexecutionloader

    • GootLoader

      JavaScript loader known for delivering other families such as Gootkit and Cobaltstrike.

      loadergootloader

    • Blocklisted process makes network request

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks