Overview

overview

7

Static

static

1

Latsuna.exe

windows7-x64

7

Latsuna.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    Latsuna.rar

  • Size

    61.6MB

  • Sample

    231002-jr34cshh93

  • MD5

    d63058f0c63cdd96c2c217524f2119ef

  • SHA1

    9fe54811e6daab2e000523337bdd6854519876bc

  • SHA256

    40e973be40b0603352e9eb79865cfa33873cdd77b4e57782141953c1110d25bb

  • SHA512

    af1f2fea05a80645da3a25b5754937ff54b191a7ea1cbe871e40fdd13298b306dd75e6a6eda04cdf5e7c2664198bfe414822cf17c21a63a45522b80ffeef814b

  • SSDEEP

    1572864:ycrE2zJ5PuG9Q+N7StTu5jMbYilyT00TE/7dP0WdxlOR5ABI:JrEsJ8G9z7Fj890a9xoR53

Score
7/10

Malware Config

Targets

    • Target

      Latsuna.exe

    • Size

      61.7MB

    • MD5

      cb89a787d9abdde09f6a92b8b78ebf29

    • SHA1

      f2bd52a6151df1d9c8263135421c7419b04284d4

    • SHA256

      09bfeb9d151d9c32da7f30dbd307e17a52d1578a6fa1760df163a3a2d46db3ad

    • SHA512

      74c68d8ac3975601aa83ba69fa4e2ebb1d938ddc0ed317c57cc546e3b3dbb9719ba9ea0304aad1fff6162a52d5b7f373e8da999256b3d349fe39ddfacde9123c

    • SSDEEP

      1572864:tm6luqpaPHo+HfjRyigjXaXiymm4QOGfp7Izlag4a:g6luY+Hdyi21QOGx6lag4a

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks