gootloader | 53f8a46c948c968fe753a5f723bdf99d3b3d141dc3dec3d8e36480975c7ce879 | Triage

Submit
Reports

Overview

overview

Static

static

1

53f8a46c94...879.js

windows10-2004-x64

Resubmissions

18-12-2024 14:27

241218-rsv35stjdr 10

18-12-2024 13:54

241218-q71rha1mfw 10

18-12-2024 13:48

241218-q4epvs1ldw 10

18-12-2024 02:32

241218-c1s67azqhq 10

Sharing

General

Target

53f8a46c948c968fe753a5f723bdf99d3b3d141dc3dec3d8e36480975c7ce879.unknown
Size

281KB
Sample

241218-q71rha1mfw
MD5

95238ad5a91d721c6e8fdf4c36187798
SHA1

7b468a279606b62b0abe1a3e14aa16f0c9e6b93d
SHA256

53f8a46c948c968fe753a5f723bdf99d3b3d141dc3dec3d8e36480975c7ce879
SHA512

26139d8e3a97a9971f1163af0754c3f990b82f4af04f0fc6862dc1b2ae6186a6948a001c7c8ab2b6e981b409715e30b8c2bdf007e8d02e539c37f95438486441
SSDEEP

6144:i53Ih6ntcHCDMwfT2jP4OfSqy+QBFm9E7JFy8PlI4I1f8sATRZtr:ivs4OfSDFmcNe1f8sATtr

Score

10^/10

gootloader execution loader

Static task

static1

Behavioral task

behavioral1

Sample

53f8a46c948c968fe753a5f723bdf99d3b3d141dc3dec3d8e36480975c7ce879.js

Resource

win10v2004-20241007-en

gootloader execution loader

windows10-2004-x64

12 signatures

600 seconds

Malware Config

Targets

- Target
  
  53f8a46c948c968fe753a5f723bdf99d3b3d141dc3dec3d8e36480975c7ce879.unknown
- Size
  
  281KB
- MD5
  
  95238ad5a91d721c6e8fdf4c36187798
- SHA1
  
  7b468a279606b62b0abe1a3e14aa16f0c9e6b93d
- SHA256
  
  53f8a46c948c968fe753a5f723bdf99d3b3d141dc3dec3d8e36480975c7ce879
- SHA512
  
  26139d8e3a97a9971f1163af0754c3f990b82f4af04f0fc6862dc1b2ae6186a6948a001c7c8ab2b6e981b409715e30b8c2bdf007e8d02e539c37f95438486441
- SSDEEP
  
  6144:i53Ih6ntcHCDMwfT2jP4OfSqy+QBFm9E7JFy8PlI4I1f8sATRZtr:ivs4OfSDFmcNe1f8sATtr
Score

10^/10

gootloader execution loader
- GootLoader
  JavaScript loader known for delivering other families such as Gootkit and Cobaltstrike.
  loader gootloader
- Gootloader family
  gootloader
- Blocklisted process makes network request
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

JavaScript

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

gootloaderexecutionloader

© 2018-2025

Terms | Privacy