Overview

overview

10

Static

static

1

mutualagre...use.js

windows7-x64

10

mutualagre...use.js

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    mutualagreementofpartiesfarclause.js

  • Size

    842KB

  • Sample

    241003-c4kn8azhjp

  • MD5

    5877f94e41a390efbac7bede44d6fd55

  • SHA1

    0231de627e81d5c38e18c22fa303d8adce2fd5ae

  • SHA256

    19f61a820471666bc3b5ca03445c7ff13c4003c0f4223efce006250979c632b2

  • SHA512

    79f30084d57fc9671965a23a7f699a11afbfc036e4a158f7b4210e850aacb9ef580aeec7348308f7894aca1f75cd63dfaaab2e32dc5a699fde9e883b8b4c943d

  • SSDEEP

    24576:gaCgo+ogQc5WfNnZmD/nNe6qYbNeR4qCFkWpyQTa7FNE3NEr:gaCgo+ogQc5WfNnZmD/nc6qYkYkWpyQc

Score
10/10
gootloaderexecutionloader

Malware Config

Targets

    • Target

      mutualagreementofpartiesfarclause.js

    • Size

      842KB

    • MD5

      5877f94e41a390efbac7bede44d6fd55

    • SHA1

      0231de627e81d5c38e18c22fa303d8adce2fd5ae

    • SHA256

      19f61a820471666bc3b5ca03445c7ff13c4003c0f4223efce006250979c632b2

    • SHA512

      79f30084d57fc9671965a23a7f699a11afbfc036e4a158f7b4210e850aacb9ef580aeec7348308f7894aca1f75cd63dfaaab2e32dc5a699fde9e883b8b4c943d

    • SSDEEP

      24576:gaCgo+ogQc5WfNnZmD/nNe6qYbNeR4qCFkWpyQTa7FNE3NEr:gaCgo+ogQc5WfNnZmD/nc6qYkYkWpyQc

    Score
    10/10
    gootloaderexecutionloader

    • GootLoader

      JavaScript loader known for delivering other families such as Gootkit and Cobaltstrike.

      loadergootloader

    • Blocklisted process makes network request

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks