lu0bot | b31bfcf253f43c08bdd92beb319b394c122400f4da864a47d5ac086e913ebffc | Triage

Submit
Reports

Overview

overview

Static

static

eufive_202...11.exe

windows7_x64

eufive_202...11.exe

windows10_x64

Sharing

General

Target

eufive_20210728-150311
Size

3KB
Sample

210728-5vwd21tdv6
MD5

fad837e4ca6d812d41eb543a9fd06e1f
SHA1

efb7c567194b1de7b8cadd5f42296858af1bcec0
SHA256

b31bfcf253f43c08bdd92beb319b394c122400f4da864a47d5ac086e913ebffc
SHA512

78deb668d77cd154301282029bbf0b696b81457fb747735c31661b730a5c5a7485f814e12f0fb8a5dd27bab04aac5c6f6d739225bfbc769910f7403a6a52c5eb

Score

10^/10

lu0bot discovery stealer suricata trojan

Static task

static1

Behavioral task

behavioral1

Sample

eufive_20210728-150311.exe

Resource

win7v20210408

lu0bot discovery stealer suricata trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

eufive_20210728-150311.exe

Resource

win10v20210408

lu0bot discovery stealer suricata trojan

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  eufive_20210728-150311
- Size
  
  3KB
- MD5
  
  fad837e4ca6d812d41eb543a9fd06e1f
- SHA1
  
  efb7c567194b1de7b8cadd5f42296858af1bcec0
- SHA256
  
  b31bfcf253f43c08bdd92beb319b394c122400f4da864a47d5ac086e913ebffc
- SHA512
  
  78deb668d77cd154301282029bbf0b696b81457fb747735c31661b730a5c5a7485f814e12f0fb8a5dd27bab04aac5c6f6d739225bfbc769910f7403a6a52c5eb
Score

10^/10

lu0bot discovery stealer suricata trojan
- Lu0bot
  Lu0bot is a lightweight infostealer written in NodeJS.
  trojan stealer lu0bot
- suricata: ET MALWARE lu0bot Loader HTTP Request
  suricata
- suricata: ET MALWARE lu0bot Loader HTTP Response
  suricata
- Blocklisted process makes network request
- Executes dropped EXE
- Loads dropped DLL
- Modifies file permissions
  discovery
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Command-Line Interface

Persistence

Hidden Files and Directories

Privilege Escalation

Defense Evasion

File Permissions Modification

Hidden Files and Directories

Credential Access

Discovery

System Information Discovery

Query Registry

Process Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

lu0botdiscoverystealersuricatatrojan

behavioral2

lu0botdiscoverystealersuricatatrojan

© 2018-2024

Terms | Privacy