Tips for Automating IOC Extraction from GootLoader, a Changing JavaScript Malware

The threat actors behind GootLoader are always making adjustments to this family of JavaScript malware, which affects indicator of compromise (IOC) extraction using our decoder script. Whenever the GootLoader decoder breaks we try to adapt it to the new version of the malware to help the security community. In this post, we share the process … Read more