latentbot | 6eb64cb0dcdcd081ba4cff253ec530abf9bf4f95bccf04597ad486f0536c1598 | Triage

Sharing

General

Target

6eb64cb0dcdcd081ba4cff253ec530abf9bf4f95bccf04597ad486f0536c1598
Size

174KB
Sample

240410-nxjdcsee42
MD5

6ebae56d4cc2a9a9454603b6116fa1a4
SHA1

04117eaa6ccd45c8e05705a06865feb8687aab18
SHA256

6eb64cb0dcdcd081ba4cff253ec530abf9bf4f95bccf04597ad486f0536c1598
SHA512

bb363bced015f44cde8280ebc9e7ed7b5a2a7a47477e227cb4a1647cce3d289a041d9a33501e71843e42073af1875b001187a255b453d6855a8182dec0825480
SSDEEP

3072:IxW01RfNvvAgLMrclOa70BT9Wd5eOJbby8jByjSuZ1vekgAkZhwqDD:MnnCrYr019WfXbV0hfvHG

Score

10^/10

latentbot trojan

Malware Config

Extracted

Family

latentbot

C2

atlaswebportal.zapto.org

Targets

- Target
  
  6eb64cb0dcdcd081ba4cff253ec530abf9bf4f95bccf04597ad486f0536c1598
- Size
  
  174KB
- MD5
  
  6ebae56d4cc2a9a9454603b6116fa1a4
- SHA1
  
  04117eaa6ccd45c8e05705a06865feb8687aab18
- SHA256
  
  6eb64cb0dcdcd081ba4cff253ec530abf9bf4f95bccf04597ad486f0536c1598
- SHA512
  
  bb363bced015f44cde8280ebc9e7ed7b5a2a7a47477e227cb4a1647cce3d289a041d9a33501e71843e42073af1875b001187a255b453d6855a8182dec0825480
- SSDEEP
  
  3072:IxW01RfNvvAgLMrclOa70BT9Wd5eOJbby8jByjSuZ1vekgAkZhwqDD:MnnCrYr019WfXbV0hfvHG
Score

10^/10

latentbot trojan
- LatentBot
  Modular trojan written in Delphi which has been in-the-wild since 2013.
  trojan latentbot
- Drops startup file
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

latentbottrojan

behavioral2

latentbottrojan