latrodectus | b4d74473cb5f2aeed8ba8f2e54419370d6c6e5dd0cf3afa12259a000fed96101 | Triage

Submit
Reports

Overview

overview

Static

static

3

JDHSY373DE34DE.lnk

windows7-x64

JDHSY373DE34DE.lnk

windows10-2004-x64

version1.dll

windows7-x64

1

version1.dll

windows10-2004-x64

1

Sharing

General

Target

a5124f400e74fcbc68fa4f6ce7af9379bdb7a3bdcc54da85f4700ac6ef499f94.zip
Size

376KB
Sample

240402-q7s2nacc6s
MD5

39a1f135d1b16dfe17d9665b58100016
SHA1

9607b03486cb9050a36b8ad09c2f19344548d10d
SHA256

b4d74473cb5f2aeed8ba8f2e54419370d6c6e5dd0cf3afa12259a000fed96101
SHA512

300c8e6d7e8bb80d3b7d8590ad0330f78d4183d015816843f53301c1cbc9e6e83437298827a49ae0f33e4ea483a2b73b11b694fc0dd53318ce70b36b4efdbae3
SSDEEP

6144:QkqPZXo99qB3a6VgflJm7WwZ7MZkjbu8J4fLkZi0XXCKGIEn05iEluP:Uxo4DscxukjL2f0xXCG5iBP

Score

10^/10

latrodectus loader

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

JDHSY373DE34DE.lnk

Resource

win7-20240221-en

latrodectus loader

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

JDHSY373DE34DE.lnk

Resource

win10v2004-20240226-en

latrodectus loader

windows10-2004-x64

8 signatures

150 seconds

Behavioral task

behavioral3

Sample

version1.dll

Resource

win7-20240221-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral4

Sample

version1.dll

Resource

win10v2004-20240226-en

windows10-2004-x64

0 signatures

150 seconds

Malware Config

Extracted

Family

latrodectus

C2

https://peermangoz.me/live/

https://aprettopizza.world/live/

Targets

- Target
  
  JDHSY373DE34DE.lnk
- Size
  
  838B
- MD5
  
  e329a92bc95c5a54492a483f8cf61ac1
- SHA1
  
  aca998cbead3c29b346a1e8d14d82a0281f65bfc
- SHA256
  
  49fb8c49c01a5f822417f1b9610bb8b9b808d0a0a3d09247b0a64961ede2e8b9
- SHA512
  
  bb426820583165354001bd6ae01b1ba1356f34d4c16cb32add1a5d1fdef0846033ca7cbee3bc4ac86e32bac226b54152dc160328b5381661be557c2d9b9ed714
Score

10^/10

latrodectus loader
- Latrodectus loader
  Latrodectus is a loader written in C++.
  loader latrodectus
- Detect larodectus Loader variant 1
  loader
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  version1.dll
- Size
  
  1.5MB
- MD5
  
  b940f9dc5e1f90b9366af62399d9b147
- SHA1
  
  ed6367f231ae4c810342e3f31ff7f57738049469
- SHA256
  
  221e906b73db3dd177f65eba9310efeb2921f512d1eb67d516d8036b4193344e
- SHA512
  
  cc9d754e15259456ad4d0d3f459dfa2065bcc5ea266d4327f9050c27a33c4b4406ed862e2fcb1d4b7a1d37b2ac27d9e705ff7a0a3d7fb711f55dd7c955fa6843
- SSDEEP
  
  12288:e3ZJHttTLoh9ZyM67XI25eXAezXiULjiEG7:e33HTLoh9ZyMY425eQmiUL+E
Score

1^/10
behavioral3 behavioral4

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

latrodectusloader

behavioral2

latrodectusloader

behavioral3

behavioral4

© 2018-2025

Terms | Privacy