Gootloader Malware Threat Intel Advisory | Threat Intelligence | CloudSEK
Tags
cmtmf-attack-pattern: Boot Or Logon Autostart Execution Command And Scripting Interpreter Compromise Infrastructure Process Injection
country: Germany France South Korea
attack-pattern: Boot Or Logon Autostart Execution - T1547 Command And Scripting Interpreter - T1623 Compromise Infrastructure - T1584 Gather Victim Network Information - T1590 Ip Addresses - T1590.005 Javascript - T1059.007 Malicious File - T1204.002 Malware - T1587.001 Malware - T1588.001 Powershell - T1059.001 Process Hollowing - T1055.012 Process Injection - T1631 Registry Run Keys / Startup Folder - T1547.001 Search Engines - T1593.002 Server - T1583.004 Server - T1584.004 Software - T1592.002 Command-Line Interface - T1059 Deobfuscate/Decode Files Or Information - T1140 Modify Registry - T1112 Powershell - T1086 Process Hollowing - T1093 Process Injection - T1055 Registry Run Keys / Start Folder - T1060 User Execution - T1204 User Execution
Show in Graph
Common Information
Type Value
UUID 216dd13e-44c6-439c-afe5-625818342428
Fingerprint 1dc196471b53fe1
Analysis status DONE
Considered CTI value 2
Text language
Published March 9, 2021, midnight
Added to db Aug. 31, 2024, 2:30 a.m.
Last updated Nov. 17, 2024, 6:56 p.m.
Headline Gootloader Malware Threat Intel Advisory
Title Gootloader Malware Threat Intel Advisory | Threat Intelligence | CloudSEK
Detected Hints/Tags/Attributes 67/3/24
Source URLs
Redirection Url
Details Source https://www.cloudsek.com/threatintelligence/gootloader-malware-threat-intel-advisory
URL Provider
Details Provider Source level domain
Details cloudsek.com www.cloudsek.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 89 CloudSEK Threat Intelligence https://cloudsek.com/threatintelligence/rss.xml 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details sha1 1 
8731316018d005690046909f86b10a2130cfe75c
Details sha1 1 
04ac4430395e4bb5c8e78e3c6a277f108da36124
Details sha1 1 
d7469da6a523239a9f2eee26d944aa9076c87bfa
Details sha1 1 
f43b74c10c880546cf03014e253026736f01d1f9
Details sha1 1 
2bc5babb780ffdd38f2ee61583ed2d036fd499d7
Details sha1 1 
7fde4507b2430e37c7dc9a1df8904371bc1bf9b2
Details sha1 1 
f2ddf525f9bf9e583cb6e2694e5abfac483660b2
Details sha1 1 
098b332b7a4f8712916d6a681799e390daaaef98
Details sha1 1 
9771dc299da3aafd578a3182c63530315aff5726
Details sha1 1 
dd98b9fce29bb291f37ef7ccf745ad3cdf5880b8
Details sha1 1 
effb1d6d2a254c428fd3b726e5d10ba9c77a3ae6
Details sha1 1 
f6525c66ab292d394ff7ec3da9beca8c45919788
Details sha1 1 
02efc02a97e2223a85deea842eacebe9eb86aa0f
Details sha1 1 
c51d97e76b018918504533ffdc05b06bae420912
Details sha1 1 
f1acf90d5a42eba5b601ebe1b954be72d1c5b0b2
Details MITRE ATT&CK Techniques 14 
T1590.005
Details MITRE ATT&CK Techniques 21 
T1584.004
Details MITRE ATT&CK Techniques 93 
T1059.007
Details MITRE ATT&CK Techniques 460 
T1059.001
Details MITRE ATT&CK Techniques 365 
T1204.002
Details MITRE ATT&CK Techniques 380 
T1547.001
Details MITRE ATT&CK Techniques 504 
T1140
Details MITRE ATT&CK Techniques 550 
T1112
Details MITRE ATT&CK Techniques 86 
T1055.012