Analysis
-
max time kernel
29s -
max time network
46s -
platform
windows7_x64 -
resource
win7-20220812-en -
resource tags
arch:x64arch:x86image:win7-20220812-enlocale:en-usos:windows7-x64system -
submitted
18-01-2023 18:47
Static task
static1
Behavioral task
behavioral1
Sample
d87a200a26d07a64272e93fb3ae8f8d9e4d34bdfedb0cf7c685a6c97912e967f_payload.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
d87a200a26d07a64272e93fb3ae8f8d9e4d34bdfedb0cf7c685a6c97912e967f_payload.exe
Resource
win10v2004-20221111-en
General
-
Target
d87a200a26d07a64272e93fb3ae8f8d9e4d34bdfedb0cf7c685a6c97912e967f_payload.exe
-
Size
244KB
-
MD5
df6c13edd8b1bde231ce5d53eaa6a67e
-
SHA1
da241fee02b2c665859d959ead4ba2f5054c9681
-
SHA256
251cb6c1b04d7ec54d9c81c68ae02851b0ebde0177c15315452245087f4f6616
-
SHA512
abfee3642d00911f357cfd2918f5e2ebde077d494b0e50f8ef2d0de74cb43687e0c500820bffe9f129b1e87983fbab476f84e2454e7af3f731d05f3ee4a7c3fe
-
SSDEEP
3072:Cs5HQeq/vgLewZUFYdmJ4s6pue54LzAeEpdB5awLiKHu5Bzf5sD/qQgVSges7nDo:m4UYkys+OLzAXdBUJBTSges7nDT
Malware Config
Signatures
-
Detects LgoogLoader payload 1 IoCs
Processes:
resource yara_rule behavioral1/memory/1632-56-0x0000000000120000-0x000000000012D000-memory.dmp family_lgoogloader -
LgoogLoader
A downloader capable of dropping and executing other malware families.