General

  • Target

    7fe10c2e9e135621141b2d02b3aabda8aad3f852ff1f016ab8278efb8ab24b18

  • Size

    861KB

  • Sample

    230103-f6vhzsdc9x

  • MD5

    952eeef101c74b1d98848bb1a2f78111

  • SHA1

    66e66da50f41463c77d0d677dbc55d25f461a7d3

  • SHA256

    7fe10c2e9e135621141b2d02b3aabda8aad3f852ff1f016ab8278efb8ab24b18

  • SHA512

    8aa05287279c6fd3859015939484c3767576a5c0db8f63528c2ca6fd5fe82b51a50717f632c2a9f35f5d557825f9b8e629e394290f77709f34356b530d5ebe79

  • SSDEEP

    12288:lzRBCpZceBxmgdu3Qc44Eo8cp3bPSICXIIYn7GN1rsy8Usn9EDEg7r+rFZ22YwX:lGpaeBAauL4i7SIEtvrs99EAg7gvd9X

Malware Config

Targets

    • Target

      7fe10c2e9e135621141b2d02b3aabda8aad3f852ff1f016ab8278efb8ab24b18

    • Size

      861KB

    • MD5

      952eeef101c74b1d98848bb1a2f78111

    • SHA1

      66e66da50f41463c77d0d677dbc55d25f461a7d3

    • SHA256

      7fe10c2e9e135621141b2d02b3aabda8aad3f852ff1f016ab8278efb8ab24b18

    • SHA512

      8aa05287279c6fd3859015939484c3767576a5c0db8f63528c2ca6fd5fe82b51a50717f632c2a9f35f5d557825f9b8e629e394290f77709f34356b530d5ebe79

    • SSDEEP

      12288:lzRBCpZceBxmgdu3Qc44Eo8cp3bPSICXIIYn7GN1rsy8Usn9EDEg7r+rFZ22YwX:lGpaeBAauL4i7SIEtvrs99EAg7gvd9X

    • Detects LgoogLoader payload

    • LgoogLoader

      A downloader capable of dropping and executing other malware families.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v6

Tasks