lgoogloader | 5a6fcd8d7424e809ecba56916e4481fa47b86cd4f5e75248caee1028ff4b955c | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

1

6b938ebdcb...dc.exe

windows7-x64

3

6b938ebdcb...dc.exe

windows10-2004-x64

Sharing

General

Target

6b938ebdcbd1816155cdae3f5c344edc.exe
Size

101KB
Sample

230601-vmd48afg71
MD5

6b938ebdcbd1816155cdae3f5c344edc
SHA1

703a0c0366f22cc4a226edbbb7e6b548e70bd116
SHA256

5a6fcd8d7424e809ecba56916e4481fa47b86cd4f5e75248caee1028ff4b955c
SHA512

f53202bcca4f30805634f1f8de6b6f9089bc2e18fca453ffab85f3351fcc343962774caac6abeb053c781c6e1740a860fff538a86fc1e8487d408242d6c73acb
SSDEEP

3072:KdhJVZbIUqVA1kLOnf9LGQGkyNgAJ9pZ+Gu:fn94tjtAJ9pZc

Score

10^/10

lgoogloader downloader persistence

Static task

static1

Behavioral task

behavioral1

Sample

6b938ebdcbd1816155cdae3f5c344edc.exe

Resource

win7-20230220-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

6b938ebdcbd1816155cdae3f5c344edc.exe

Resource

win10v2004-20230220-en

lgoogloader downloader persistence

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  6b938ebdcbd1816155cdae3f5c344edc.exe
- Size
  
  101KB
- MD5
  
  6b938ebdcbd1816155cdae3f5c344edc
- SHA1
  
  703a0c0366f22cc4a226edbbb7e6b548e70bd116
- SHA256
  
  5a6fcd8d7424e809ecba56916e4481fa47b86cd4f5e75248caee1028ff4b955c
- SHA512
  
  f53202bcca4f30805634f1f8de6b6f9089bc2e18fca453ffab85f3351fcc343962774caac6abeb053c781c6e1740a860fff538a86fc1e8487d408242d6c73acb
- SSDEEP
  
  3072:KdhJVZbIUqVA1kLOnf9LGQGkyNgAJ9pZ+Gu:fn94tjtAJ9pZc
Score

10^/10

lgoogloader downloader persistence
- Detects LgoogLoader payload
- LgoogLoader
  A downloader capable of dropping and executing other malware families.
  downloader lgoogloader
- Sets service image path in registry
  persistence
- Uses the VBS compiler for execution
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scripting

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Scripting

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

lgoogloaderdownloaderpersistence

© 2018-2025

Terms | Privacy