Overview

overview

10

Static

static

10

852-46-0x0...ry.dll

windows7-x64

1

852-46-0x0...ry.dll

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    852-46-0x00000000001F0000-0x0000000000204000-memory.dmp

  • Size

    80KB

  • MD5

    67a8b1718bb1d56f415447bd5e5c00bc

  • SHA1

    fb11b9d3f77f53ca942f44824d1faa7bd5823f17

  • SHA256

    da6ca4c2fc0ef28c2a59874164ce691e74a2f41329d59b0344282bfdf4eb2324

  • SHA512

    efb342eb771157b7e3a631232c8c60c4e76f917ccb9f36bd2c57cbb9aab97c4bdce2348a8a34fe39da069b562833508459c483681584a1d87a1378df8e90325e

  • SSDEEP

    768:Ai0IIO99dKJKbAgQVuyQw4n4mjlQmLvniWiMfDeDvCHIUz:spO9CJKrQF4n4mjltqTMKDaH

Score
10/10
loaderlatrodectus

Malware Config

Extracted

Family

latrodectus

C2

https://titnovacrion.top/live/

https://skinnyjeanso.com/live/

Signatures

  • Detect larodectus Loader variant 2 1 IoCs
    loader
  • Latrodectus family
    latrodectus
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 852-46-0x00000000001F0000-0x0000000000204000-memory.dmp
    .dll windows:6 windows x64 arch:x64


    Headers

    Sections