Resubmissions

11-11-2024 23:21

241111-3b2edayjds 8

05-10-2024 21:20

241005-z67cbstakj 8

General

  • Target

    GoonScript.exe

  • Size

    23.9MB

  • Sample

    241111-3b2edayjds

  • MD5

    1a9db32cb6599def92c294de4e020891

  • SHA1

    6185c86963dfbc2d4c178b6affa779a12db8f383

  • SHA256

    3aa4e4e742a415037651725683b64b4a15a229cbc01dbec398e6e28763e59955

  • SHA512

    eb042ad8726939861edba0fddbf4f289e656cdf9927a0b80d4d7a9c0048b83dc4078ed2e57fe49d0451947066b8b86fe4884b2cde385f0572323dd2fd7b4686d

  • SSDEEP

    393216:qNS81k7k1pm1h1MUIvZML2V76mOc/e18fyGLzC3jP1A3FXfAn/hybXXlWI5I:v8m1rMUZyV7UuuCyGHC71A1O4HcqI

Malware Config

Targets

    • Target

      GoonScript.exe

    • Size

      23.9MB

    • MD5

      1a9db32cb6599def92c294de4e020891

    • SHA1

      6185c86963dfbc2d4c178b6affa779a12db8f383

    • SHA256

      3aa4e4e742a415037651725683b64b4a15a229cbc01dbec398e6e28763e59955

    • SHA512

      eb042ad8726939861edba0fddbf4f289e656cdf9927a0b80d4d7a9c0048b83dc4078ed2e57fe49d0451947066b8b86fe4884b2cde385f0572323dd2fd7b4686d

    • SSDEEP

      393216:qNS81k7k1pm1h1MUIvZML2V76mOc/e18fyGLzC3jP1A3FXfAn/hybXXlWI5I:v8m1rMUZyV7UuuCyGHC71A1O4HcqI

    • Uses browser remote debugging

      Can be used control the browser and steal sensitive information such as credentials and session cookies.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks