lu0bot | db246897a0efe3c4b3cd4b9f832067815fa920045e9a5a3d0881dc9ffd958fb0 | Triage

Submit
Reports

Overview

overview

Static

static

db246897a0...b0.exe

windows7_x64

db246897a0...b0.exe

windows10_x64

Sharing

General

Target

db246897a0efe3c4b3cd4b9f832067815fa920045e9a5a3d0881dc9ffd958fb0.exe
Size

3KB
Sample

210804-2rnj7dlxvj
MD5

172da997f8be4c8d0318a322c8ee806e
SHA1

224d3e925800815e792af3a28f8d2dffb9c21e70
SHA256

db246897a0efe3c4b3cd4b9f832067815fa920045e9a5a3d0881dc9ffd958fb0
SHA512

75e85d44f076dee7505389284609ab4b138d676d777e3ebfe37e11053b293b7f5d91cfb66a4304539fb41c91db74c79ec93d262cbe1e908ffd5f530be4475ca4

Score

10^/10

lu0bot discovery stealer suricata trojan

Static task

static1

Behavioral task

behavioral1

Sample

db246897a0efe3c4b3cd4b9f832067815fa920045e9a5a3d0881dc9ffd958fb0.exe

Resource

win7v20210408

lu0bot discovery stealer suricata trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

db246897a0efe3c4b3cd4b9f832067815fa920045e9a5a3d0881dc9ffd958fb0.exe

Resource

win10v20210410

lu0bot discovery stealer suricata trojan

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  db246897a0efe3c4b3cd4b9f832067815fa920045e9a5a3d0881dc9ffd958fb0.exe
- Size
  
  3KB
- MD5
  
  172da997f8be4c8d0318a322c8ee806e
- SHA1
  
  224d3e925800815e792af3a28f8d2dffb9c21e70
- SHA256
  
  db246897a0efe3c4b3cd4b9f832067815fa920045e9a5a3d0881dc9ffd958fb0
- SHA512
  
  75e85d44f076dee7505389284609ab4b138d676d777e3ebfe37e11053b293b7f5d91cfb66a4304539fb41c91db74c79ec93d262cbe1e908ffd5f530be4475ca4
Score

10^/10

lu0bot discovery stealer suricata trojan
- Lu0bot
  Lu0bot is a lightweight infostealer written in NodeJS.
  trojan stealer lu0bot
- suricata: ET MALWARE lu0bot Loader HTTP Request
  suricata
- suricata: ET MALWARE lu0bot Loader HTTP Response
  suricata
- Blocklisted process makes network request
- Executes dropped EXE
- Loads dropped DLL
- Modifies file permissions
  discovery
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Command-Line Interface

Persistence

Hidden Files and Directories

Privilege Escalation

Defense Evasion

File Permissions Modification

Hidden Files and Directories

Credential Access

Discovery

System Information Discovery

Query Registry

Process Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

lu0botdiscoverystealersuricatatrojan

behavioral2

lu0botdiscoverystealersuricatatrojan

© 2018-2024

Terms | Privacy