lgoogloader | 314410dacd8226075671d108c091e8dcf6f24156b10b430e81e25891d750d68d | Triage

Sharing

General

Target

file.exe
Size

1.1MB
Sample

221124-jybbxsdc7z
MD5

2ad4efa6bd88630d2a3a61b1898cd62f
SHA1

e5b869841b26fbb54b9e94668b3017face715581
SHA256

314410dacd8226075671d108c091e8dcf6f24156b10b430e81e25891d750d68d
SHA512

2df531a6634c0ecd3448b5369507b2f9735f651cfd932ec13140521154bcdbaaf03d76f82fc6e61cec669ab58cc06ef04d349f9b2a2c604a00eeeaf59e6b413c
SSDEEP

24576:X9ERWaeW0rxk6fIAkiWOurxoETjpoLIrDoS:X9EwW8xkVQvuloETjGLIrDoS

Score

10^/10

lgoogloader downloader persistence

Malware Config

Targets

- Target
  
  file.exe
- Size
  
  1.1MB
- MD5
  
  2ad4efa6bd88630d2a3a61b1898cd62f
- SHA1
  
  e5b869841b26fbb54b9e94668b3017face715581
- SHA256
  
  314410dacd8226075671d108c091e8dcf6f24156b10b430e81e25891d750d68d
- SHA512
  
  2df531a6634c0ecd3448b5369507b2f9735f651cfd932ec13140521154bcdbaaf03d76f82fc6e61cec669ab58cc06ef04d349f9b2a2c604a00eeeaf59e6b413c
- SSDEEP
  
  24576:X9ERWaeW0rxk6fIAkiWOurxoETjpoLIrDoS:X9EwW8xkVQvuloETjGLIrDoS
Score

10^/10

persistence lgoogloader downloader
- Detects LgoogLoader payload
- LgoogLoader
  A downloader capable of dropping and executing other malware families.
  downloader lgoogloader
- Executes dropped EXE
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Command-Line Interface

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Remote System Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

lgoogloaderdownloaderpersistence