lu0bot | 28918d35a5f4103695d04817fd2ac7de977d316a0cc94dad3b3f124f030686bc | Triage

Submit
Reports

Overview

overview

Static

static

usfive_20210629.exe

windows7_x64

usfive_20210629.exe

windows10_x64

Sharing

General

Target

usfive_20210629
Size

2KB
Sample

210629-mgk91xw8e2
MD5

09353c5898ccf513210a58fb9bb369e7
SHA1

bb664adcc58466a0b158651a9e4216dbfd08607b
SHA256

28918d35a5f4103695d04817fd2ac7de977d316a0cc94dad3b3f124f030686bc
SHA512

0cd0a4f8b38b92d9bf46f2e068ce99917a7835b8bcb4a9ec4b0d3e7d570f34f48252e4e82df5f1fffc075aa82ae9c3eaab0e4e943de56f5003c97efd78c44e15

Score

10^/10

lu0bot discovery stealer trojan

Static task

static1

Behavioral task

behavioral1

Sample

usfive_20210629.exe

Resource

win7v20210408

lu0bot discovery stealer trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

usfive_20210629.exe

Resource

win10v20210410

lu0bot discovery stealer trojan

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  usfive_20210629
- Size
  
  2KB
- MD5
  
  09353c5898ccf513210a58fb9bb369e7
- SHA1
  
  bb664adcc58466a0b158651a9e4216dbfd08607b
- SHA256
  
  28918d35a5f4103695d04817fd2ac7de977d316a0cc94dad3b3f124f030686bc
- SHA512
  
  0cd0a4f8b38b92d9bf46f2e068ce99917a7835b8bcb4a9ec4b0d3e7d570f34f48252e4e82df5f1fffc075aa82ae9c3eaab0e4e943de56f5003c97efd78c44e15
Score

10^/10

lu0bot discovery stealer trojan
- Lu0bot
  Lu0bot is a lightweight infostealer written in NodeJS.
  trojan stealer lu0bot
- Blocklisted process makes network request
- Executes dropped EXE
- Loads dropped DLL
- Modifies file permissions
  discovery
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Command-Line Interface

Persistence

Hidden Files and Directories

Privilege Escalation

Defense Evasion

File Permissions Modification

Hidden Files and Directories

Credential Access

Discovery

System Information Discovery

Query Registry

Process Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

lu0botdiscoverystealertrojan

behavioral2

lu0botdiscoverystealertrojan

© 2018-2024

Terms | Privacy