lgoogloader | 3ef51a4e47e46448877692e81f440cce4ef1544a8f755792817d93d7574c020d | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

1

file.exe

windows7-x64

file.exe

windows10-2004-x64

Sharing

General

Target

file
Size

560KB
Sample

230419-ww9g6aee2v
MD5

d4072e3ede949196b3955963287de576
SHA1

2588144e66ac20459431518c8b024f8f369fa28f
SHA256

3ef51a4e47e46448877692e81f440cce4ef1544a8f755792817d93d7574c020d
SHA512

ac38b4270d335351a4791db02073af1ab89e8b898371cc61a98b9209e61e550ecf96b023e6960572b4b827c12ba9840958520627e537fbaddf7f352e440e1533
SSDEEP

12288:l4y6teYFfFLrx086LgDWcZWC5u8wGro0ThpDoA6z1VecLL:kV0lYub27oHz1wuL

Score

10^/10

lgoogloader downloader persistence

Static task

static1

Behavioral task

behavioral1

Sample

file.exe

Resource

win7-20230220-en

lgoogloader downloader persistence

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

file.exe

Resource

win10v2004-20230221-en

lgoogloader downloader persistence

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  file
- Size
  
  560KB
- MD5
  
  d4072e3ede949196b3955963287de576
- SHA1
  
  2588144e66ac20459431518c8b024f8f369fa28f
- SHA256
  
  3ef51a4e47e46448877692e81f440cce4ef1544a8f755792817d93d7574c020d
- SHA512
  
  ac38b4270d335351a4791db02073af1ab89e8b898371cc61a98b9209e61e550ecf96b023e6960572b4b827c12ba9840958520627e537fbaddf7f352e440e1533
- SSDEEP
  
  12288:l4y6teYFfFLrx086LgDWcZWC5u8wGro0ThpDoA6z1VecLL:kV0lYub27oHz1wuL
Score

10^/10

lgoogloader downloader persistence
- Detects LgoogLoader payload
- LgoogLoader
  A downloader capable of dropping and executing other malware families.
  downloader lgoogloader
- Sets service image path in registry
  persistence
- Uses the VBS compiler for execution
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scripting

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Scripting

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

lgoogloaderdownloaderpersistence

behavioral2

lgoogloaderdownloaderpersistence

© 2018-2025

Terms | Privacy