General
-
Target
9c236eabb385b9402120bb087f0fbaa1b7ec11a897290ac6196d82197bd24ab0.js
-
Size
281KB
-
Sample
241108-dzdksaxjck
-
MD5
bc7a790fcfdc9fe5301c6a15629f67e1
-
SHA1
2168bf3521db79257ccaa7a5e4dad89082a47107
-
SHA256
9c236eabb385b9402120bb087f0fbaa1b7ec11a897290ac6196d82197bd24ab0
-
SHA512
6f87dc8c1dc6c708f29f88723eeb4f193099e962ace3da35dbcd98d1b041d75640e32fc1a88aef0c8fe79760789f98dcd729f673855fd42a4333caeab59f5484
-
SSDEEP
6144:hap3Ih6nUcdCPxwldTjjt4OfR6tQQaAFmLEnJFZ8aKIDI1foATRZtr:h8lz4OfSGAFmz9j1foATtr
Static task
static1
Behavioral task
behavioral1
Sample
9c236eabb385b9402120bb087f0fbaa1b7ec11a897290ac6196d82197bd24ab0.js
Resource
win7-20241010-en
Behavioral task
behavioral2
Sample
9c236eabb385b9402120bb087f0fbaa1b7ec11a897290ac6196d82197bd24ab0.js
Resource
win10v2004-20241007-en
Malware Config
Targets
-
-
Target
9c236eabb385b9402120bb087f0fbaa1b7ec11a897290ac6196d82197bd24ab0.js
-
Size
281KB
-
MD5
bc7a790fcfdc9fe5301c6a15629f67e1
-
SHA1
2168bf3521db79257ccaa7a5e4dad89082a47107
-
SHA256
9c236eabb385b9402120bb087f0fbaa1b7ec11a897290ac6196d82197bd24ab0
-
SHA512
6f87dc8c1dc6c708f29f88723eeb4f193099e962ace3da35dbcd98d1b041d75640e32fc1a88aef0c8fe79760789f98dcd729f673855fd42a4333caeab59f5484
-
SSDEEP
6144:hap3Ih6nUcdCPxwldTjjt4OfR6tQQaAFmLEnJFZ8aKIDI1foATRZtr:h8lz4OfSGAFmz9j1foATtr
Score10/10-
GootLoader
JavaScript loader known for delivering other families such as Gootkit and Cobaltstrike.
-
Gootloader family
-
Blocklisted process makes network request
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-