gootloader | 9f23b074d11f7c319aa0cb4393f227de1f66523e55aae48a94059f47d3652572 | Triage

Submit
Reports

Overview

overview

Static

static

1

pa collect...066.js

windows10-2004-x64

Sharing

General

Target

pa collective agreement pay 36066.js
Size

23.2MB
Sample

240622-qstdwazeja
MD5

7df2e7c08396b3b063cef4b67cc8ddfa
SHA1

97a4d853506d5fe06486e8ada4a0fbb4fa80c66e
SHA256

9f23b074d11f7c319aa0cb4393f227de1f66523e55aae48a94059f47d3652572
SHA512

fcc56a9f735e4b1eb101f460fbbcd72256af3be4cd3e4a3a9e2e76cab2700fef5668686308d1b929c4ca1dca5f5041877727db212073c816b22402d0a0686c96
SSDEEP

49152:+tM08dPXWR4ba/JOtdF5pHE2lsfiaahM3o43ORV59VDKtDxtM08dPXWR4ba/JOtz:gc43myc43myc43myc43myc43ml

Score

10^/10

gootloader execution loader

Static task

static1

Behavioral task

behavioral1

Sample

pa collective agreement pay 36066.js

Resource

win10v2004-20240611-en

gootloader execution loader

windows10-2004-x64

10 signatures

300 seconds

Malware Config

Targets

- Target
  
  pa collective agreement pay 36066.js
- Size
  
  23.2MB
- MD5
  
  7df2e7c08396b3b063cef4b67cc8ddfa
- SHA1
  
  97a4d853506d5fe06486e8ada4a0fbb4fa80c66e
- SHA256
  
  9f23b074d11f7c319aa0cb4393f227de1f66523e55aae48a94059f47d3652572
- SHA512
  
  fcc56a9f735e4b1eb101f460fbbcd72256af3be4cd3e4a3a9e2e76cab2700fef5668686308d1b929c4ca1dca5f5041877727db212073c816b22402d0a0686c96
- SSDEEP
  
  49152:+tM08dPXWR4ba/JOtdF5pHE2lsfiaahM3o43ORV59VDKtDxtM08dPXWR4ba/JOtz:gc43myc43myc43myc43myc43ml
Score

10^/10

gootloader execution loader
- GootLoader
  JavaScript loader known for delivering other families such as Gootkit and Cobaltstrike.
  loader gootloader
- Blocklisted process makes network request
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Command and Scripting Interpreter

JavaScript

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

gootloaderexecutionloader

© 2018-2024

Terms | Privacy