gootloader | 5a14ccdeec314bc1d3555a4ebed84cd5a08eb283cbb35260b2127f8a99dd8aca | Triage

Submit
Reports

Overview

overview

Static

static

1

5a14ccdeec...aca.js

windows10-1703-x64

Resubmissions

25-06-2024 17:23

240625-vyh8basgnh 10

25-06-2024 17:22

240625-vxt87asgld 3

Sharing

General

Target

5a14ccdeec314bc1d3555a4ebed84cd5a08eb283cbb35260b2127f8a99dd8aca
Size

18.5MB
Sample

240625-vyh8basgnh
MD5

5603a1437b62d81a29ba02e26fb4157d
SHA1

9a8cb2dbfb52bb7c7b9b0bef17b74a383f73fab2
SHA256

5a14ccdeec314bc1d3555a4ebed84cd5a08eb283cbb35260b2127f8a99dd8aca
SHA512

7531f1e1d252ae1c24952a4d7ac6a0a4d73aadaf5195091fd16ddec8e27ed4bcdc154bacb76a562baaca3031c083e0cdbee534a7bac4dc5d8d4ef1aa8eb31730
SSDEEP

49152:hmPm08dPXWR4ba/JOtdF5pHE2lsfiaahM3o43ORV59VDKtDMmPm08dPXWR4ba/JC:Cc43m8c43m8c43m8c43ml

Score

10^/10

gootloader execution loader

Static task

static1

Behavioral task

behavioral1

Sample

5a14ccdeec314bc1d3555a4ebed84cd5a08eb283cbb35260b2127f8a99dd8aca.js

Resource

win10-20240404-en

gootloader execution loader

windows10-1703-x64

9 signatures

600 seconds

Malware Config

Targets

- Target
  
  5a14ccdeec314bc1d3555a4ebed84cd5a08eb283cbb35260b2127f8a99dd8aca
- Size
  
  18.5MB
- MD5
  
  5603a1437b62d81a29ba02e26fb4157d
- SHA1
  
  9a8cb2dbfb52bb7c7b9b0bef17b74a383f73fab2
- SHA256
  
  5a14ccdeec314bc1d3555a4ebed84cd5a08eb283cbb35260b2127f8a99dd8aca
- SHA512
  
  7531f1e1d252ae1c24952a4d7ac6a0a4d73aadaf5195091fd16ddec8e27ed4bcdc154bacb76a562baaca3031c083e0cdbee534a7bac4dc5d8d4ef1aa8eb31730
- SSDEEP
  
  49152:hmPm08dPXWR4ba/JOtdF5pHE2lsfiaahM3o43ORV59VDKtDMmPm08dPXWR4ba/JC:Cc43m8c43m8c43m8c43ml
Score

10^/10

gootloader execution loader
- GootLoader
  JavaScript loader known for delivering other families such as Gootkit and Cobaltstrike.
  loader gootloader
- Drops file in System32 directory
behavioral1

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Command and Scripting Interpreter

PowerShell

JavaScript

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Query Registry

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

gootloaderexecutionloader

© 2018-2024

Terms | Privacy