Overview

overview

10

Static

static

1

lib.msi

windows7-x64

10

lib.msi

windows10-2004-x64

10

Resubmissions

02-04-2024 20:58

240402-zr8lvadd93 10

01-04-2024 22:38

240401-2ksyxshf68 10

01-04-2024 22:32

240401-2f8tksha31 10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    lib.msi

  • Size

    1.5MB

  • Sample

    240401-2ksyxshf68

  • MD5

    e1692df23c8753b5744c77570aca2f2e

  • SHA1

    71a71557601602427c80021acb978cccb78e1536

  • SHA256

    0f0757d1baa3bd0341d282bb0afcdbdb522676db05814a3c3051c08829151b52

  • SHA512

    4ce5eba6204ff771fa65e102529580c67076aa7906d38f240c3caf49e4ba35633384015db2ac63c4b29f340152bc6720fcec4d7e42dfdab8c21c4c6659ee5504

  • SSDEEP

    24576:SwRxLNvYLSMvZCFlp8zBQSc0ZoCvqKwx0ECIgYmfLVYeBZr7AuSqTicJ2I0x:SwxvYpW8zBQSc0ZnSKeZKumZr7AjqAI0

Score
10/10
latrodectusloader

Malware Config

Extracted

Family

latrodectus

C2

https://titnovacrion.top/live/

https://skinnyjeanso.com/live/

Targets

    • Target

      lib.msi

    • Size

      1.5MB

    • MD5

      e1692df23c8753b5744c77570aca2f2e

    • SHA1

      71a71557601602427c80021acb978cccb78e1536

    • SHA256

      0f0757d1baa3bd0341d282bb0afcdbdb522676db05814a3c3051c08829151b52

    • SHA512

      4ce5eba6204ff771fa65e102529580c67076aa7906d38f240c3caf49e4ba35633384015db2ac63c4b29f340152bc6720fcec4d7e42dfdab8c21c4c6659ee5504

    • SSDEEP

      24576:SwRxLNvYLSMvZCFlp8zBQSc0ZoCvqKwx0ECIgYmfLVYeBZr7AuSqTicJ2I0x:SwxvYpW8zBQSc0ZnSKeZKumZr7AjqAI0

    Score
    10/10
    latrodectusloader

    • Latrodectus loader

      Latrodectus is a loader written in C++.

      loaderlatrodectus

    • Detect larodectus Loader variant 2

      loader

    • Blocklisted process makes network request

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks