Overview

overview

10

Static

static

1

unionoftax...985.js

windows7-x64

10

unionoftax...985.js

windows10-2004-x64

10

Resubmissions

06-11-2024 14:57

241106-sbs3ws1paw 3

29-10-2024 14:27

241029-rsdtvswdjh 10

04-09-2024 18:25

240904-w2ngwavbmq 10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    unionoftaxationemployeescollectiveagreement91985.js

  • Size

    8.0MB

  • Sample

    241029-rsdtvswdjh

  • MD5

    cabe44b59e1b9d2e16c944787ac48e61

  • SHA1

    d5111f4a5432aef1d4cd4aa632958e4d90b102ee

  • SHA256

    5ea87676fa668a09c1db2988aadf70e29a377c172f17f1ed48b34d09730ebb47

  • SHA512

    b7b81d2df403b88d84b075671dc0604f9a9b6e637f99050f14ef5d947d5ff1a99de3f7a5604df0470949bd856cabbface9c46a8d5d9bde37efc8f88bd5d2318d

  • SSDEEP

    49152:/y+nncMHwtllKdy/s+LfHQiy+nncMHwtllKdy/s+LfHQiy+nncMHwtllKdy/s+LO:/MMMMMY

Score
10/10
gootloaderexecutionloader

Malware Config

Targets

    • Target

      unionoftaxationemployeescollectiveagreement91985.js

    • Size

      8.0MB

    • MD5

      cabe44b59e1b9d2e16c944787ac48e61

    • SHA1

      d5111f4a5432aef1d4cd4aa632958e4d90b102ee

    • SHA256

      5ea87676fa668a09c1db2988aadf70e29a377c172f17f1ed48b34d09730ebb47

    • SHA512

      b7b81d2df403b88d84b075671dc0604f9a9b6e637f99050f14ef5d947d5ff1a99de3f7a5604df0470949bd856cabbface9c46a8d5d9bde37efc8f88bd5d2318d

    • SSDEEP

      49152:/y+nncMHwtllKdy/s+LfHQiy+nncMHwtllKdy/s+LfHQiy+nncMHwtllKdy/s+LO:/MMMMMY

    Score
    10/10
    gootloaderexecutionloader

    • GootLoader

      JavaScript loader known for delivering other families such as Gootkit and Cobaltstrike.

      loadergootloader

    • Gootloader family

      gootloader

    • Blocklisted process makes network request

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks