latentbot | 9865e9f4989142513108fb6e783aa0b14528af46cc77f846e6a206c6362b0e7c | Triage

Submit
Reports

Overview

overview

Static

static

1

9865e9f498...7c.exe

windows7-x64

9865e9f498...7c.exe

windows10-2004-x64

Sharing

General

Target

9865e9f4989142513108fb6e783aa0b14528af46cc77f846e6a206c6362b0e7c
Size

236KB
Sample

240410-p4q78agc83
MD5

557bcc59ab20c44eb5b84c5073199983
SHA1

52d573e3d68459bfbb728510db9c7e564fcb1bbb
SHA256

9865e9f4989142513108fb6e783aa0b14528af46cc77f846e6a206c6362b0e7c
SHA512

e5264c9aa5a445df6848f48d6eaa8acc3173848ddab34ab641308f2ec34a2905894c953ed2c9bed3078aea9d39ab3d77bacd728db7941073c4966978f64f13a2
SSDEEP

6144:XqqDLuj88h5Acbv98/V4+a0hu3Z6dY5y:6qnuo877bFm48huYY

Score

10^/10

latentbot netwire botnet rat stealer trojan

Static task

static1

Behavioral task

behavioral1

Sample

9865e9f4989142513108fb6e783aa0b14528af46cc77f846e6a206c6362b0e7c.exe

Resource

win7-20231129-en

netwire botnet rat stealer

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

9865e9f4989142513108fb6e783aa0b14528af46cc77f846e6a206c6362b0e7c.exe

Resource

win10v2004-20231215-en

latentbot netwire botnet rat stealer trojan

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Extracted

Family

netwire

C2

atlaswebportal.zapto.org:4000

Attributes

activex_autorun
false
copy_executable
false
delete_original
false
host_id
R5_04.08.16
keylogger_dir
C:\NVIDIA\profile\
lock_executable
false
offline_keylogger
true
password
Micr0s0ft4456877
registry_autorun
false
use_mutex
false

Extracted

Family

latentbot

C2

atlaswebportal.zapto.org

Targets

- Target
  
  9865e9f4989142513108fb6e783aa0b14528af46cc77f846e6a206c6362b0e7c
- Size
  
  236KB
- MD5
  
  557bcc59ab20c44eb5b84c5073199983
- SHA1
  
  52d573e3d68459bfbb728510db9c7e564fcb1bbb
- SHA256
  
  9865e9f4989142513108fb6e783aa0b14528af46cc77f846e6a206c6362b0e7c
- SHA512
  
  e5264c9aa5a445df6848f48d6eaa8acc3173848ddab34ab641308f2ec34a2905894c953ed2c9bed3078aea9d39ab3d77bacd728db7941073c4966978f64f13a2
- SSDEEP
  
  6144:XqqDLuj88h5Acbv98/V4+a0hu3Z6dY5y:6qnuo877bFm48huYY
Score

10^/10

netwire botnet rat stealer latentbot trojan
- LatentBot
  Modular trojan written in Delphi which has been in-the-wild since 2013.
  trojan latentbot
- NetWire RAT payload
  rat
- Netwire
  Netwire is a RAT with main functionalities focused password stealing and keylogging, but also includes remote control capabilities as well.
  botnet stealer netwire
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

netwirebotnetratstealer

behavioral2

latentbotnetwirebotnetratstealertrojan

© 2018-2025

Terms | Privacy