lobshot | 15ec54cd2b2605ec8395645fe545204a89ddfe6fef656c98c0578006184d0228 | Triage

Submit
Reports

Overview

overview

Static

static

04346899.exe

windows7-x64

04346899.exe

windows10-2004-x64

Sharing

General

Target

04346899.exe
Size

96KB
Sample

230621-qmjmgsah6t
MD5

9315eb6ecab91d17c13e8e12c850fd1a
SHA1

412eed3de0dd1714b4b27d77dec8d653e6d604cf
SHA256

15ec54cd2b2605ec8395645fe545204a89ddfe6fef656c98c0578006184d0228
SHA512

c41bd3d7df65388927c5d8a46bcaa5d329741c9e690ef26e3a2a03021949a67ddda01c8f50d78b5faff8c0911ffaae33d3cf891de4b8b28360e3c3726827a216
SSDEEP

1536:QX1tIEY/6mS2I4bD7jrFgkfTeXslrYNJJpnPEqQFXB00Gdhp4VjlK+I/QX205eBj:QX1tIM2IOXjdfTeXsirnPgu4PK+Iocc

Score

10^/10

lobshot backdoor persistence

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

04346899.exe

Resource

win7-20230621-en

lobshot backdoor persistence

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

04346899.exe

Resource

win10v2004-20230621-en

lobshot backdoor persistence

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  04346899.exe
- Size
  
  96KB
- MD5
  
  9315eb6ecab91d17c13e8e12c850fd1a
- SHA1
  
  412eed3de0dd1714b4b27d77dec8d653e6d604cf
- SHA256
  
  15ec54cd2b2605ec8395645fe545204a89ddfe6fef656c98c0578006184d0228
- SHA512
  
  c41bd3d7df65388927c5d8a46bcaa5d329741c9e690ef26e3a2a03021949a67ddda01c8f50d78b5faff8c0911ffaae33d3cf891de4b8b28360e3c3726827a216
- SSDEEP
  
  1536:QX1tIEY/6mS2I4bD7jrFgkfTeXslrYNJJpnPEqQFXB00Gdhp4VjlK+I/QX205eBj:QX1tIM2IOXjdfTeXsirnPgu4PK+Iocc
Score

10^/10

lobshot backdoor persistence
- Detects Lobshot family
- Lobshot
  Lobshot is a backdoor module written in c++.
  backdoor lobshot
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Remote System Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

lobshotbackdoorpersistence

behavioral2

lobshotbackdoorpersistence

© 2018-2025

Terms | Privacy