lu0bot | 6862a78fe0776ed93f11f783024d20b4d0a8dcbd9fd555f8a31cda921ba75139 | Triage

Submit
Reports

Overview

overview

Static

static

usfive_202...18.exe

windows7_x64

usfive_202...18.exe

windows10_x64

Sharing

General

Target

usfive_20210803-201818
Size

3KB
Sample

210803-gs8lhrcnys
MD5

f90a54f4aa3e3df1e6c90663bdd46886
SHA1

fd318da966745bf298ef8d26a1570322988aec7a
SHA256

6862a78fe0776ed93f11f783024d20b4d0a8dcbd9fd555f8a31cda921ba75139
SHA512

d0283140c7ad7d995bc483dd41da06258f31534a2f028d9fcfb8091a1ae838befadf1d781e933c61597aa6c861182a550133f3ec102d580e9f7bd943920c8458

Score

10^/10

lu0bot discovery stealer suricata trojan

Static task

static1

Behavioral task

behavioral1

Sample

usfive_20210803-201818.exe

Resource

win7v20210408

lu0bot discovery stealer suricata trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

usfive_20210803-201818.exe

Resource

win10v20210410

lu0bot discovery stealer suricata trojan

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  usfive_20210803-201818
- Size
  
  3KB
- MD5
  
  f90a54f4aa3e3df1e6c90663bdd46886
- SHA1
  
  fd318da966745bf298ef8d26a1570322988aec7a
- SHA256
  
  6862a78fe0776ed93f11f783024d20b4d0a8dcbd9fd555f8a31cda921ba75139
- SHA512
  
  d0283140c7ad7d995bc483dd41da06258f31534a2f028d9fcfb8091a1ae838befadf1d781e933c61597aa6c861182a550133f3ec102d580e9f7bd943920c8458
Score

10^/10

lu0bot discovery stealer suricata trojan
- Lu0bot
  Lu0bot is a lightweight infostealer written in NodeJS.
  trojan stealer lu0bot
- suricata: ET MALWARE lu0bot Loader HTTP Request
  suricata
- suricata: ET MALWARE lu0bot Loader HTTP Response
  suricata
- Blocklisted process makes network request
- Executes dropped EXE
- Loads dropped DLL
- Modifies file permissions
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Command-Line Interface

Persistence

Hidden Files and Directories

Privilege Escalation

Defense Evasion

File and Directory Permissions Modification

Hidden Files and Directories

Credential Access

Discovery

Process Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

lu0botdiscoverystealersuricatatrojan

behavioral2

lu0botdiscoverystealersuricatatrojan

© 2018-2024

Terms | Privacy