Overview

overview

10

Static

static

1

084089515d...1.html

windows7-x64

10

084089515d...1.html

windows10-2004-x64

10

Analysis

  • max time kernel
    118s
  • max time network
    132s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    31-05-2024 13:21

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    084089515de7f20e98701e12aea66fa7551ede9fa38e214df3113f284c0c9401.html

  • Size

    13KB

  • MD5

    87228e23e944aefc9b37c3de752c7612

  • SHA1

    3b0ecac518d10d299f405cdd1ea2b932e6917d39

  • SHA256

    084089515de7f20e98701e12aea66fa7551ede9fa38e214df3113f284c0c9401

  • SHA512

    a3fac90ff83fc99f09b614e1d0844458b97eab2235807060065beb70ad548d40a2bb0c1fc2b468863f77b1a7488297c59315eba6e38460da704564943b866b47

  • SSDEEP

    384:S0iPJ6sQWt1aclS0lM1F5phpja91Uhmo3IEKZd8y:SPJt9ilF5phc91umowd8y

Score
10/10
latentbottrojan

Malware Config

Extracted

Family

latentbot

C2

radiogenesis2.zapto.org

Signatures

  • LatentBot

    Modular trojan written in Delphi which has been in-the-wild since 2013.

    trojanlatentbot
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\084089515de7f20e98701e12aea66fa7551ede9fa38e214df3113f284c0c9401.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2156
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2156 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2480

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA
    Filesize

    1KB

    MD5

    50307dd5a05eb1be118dd601a701c942

    SHA1

    be4994717eda8765bc6bd57384b314dbb1b42866

    SHA256

    003b0019192cb0ad667e934ed3b6b76f68e95a62aab33f28049a919a52d6d608

    SHA512

    92e0a914dd04769499f889160e66f4db6b771ed8fb583e52c9b7dcba15a908f590098d233c3f483c9f8a3b0662d2c5b652bba81888dc9e6e1707ecb2c0cc3277

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\CAF4703619713E3F18D8A9D5D88D6288_F2DAF19C1F776537105D08FC8D978464
    Filesize

    724B

    MD5

    8202a1cd02e7d69597995cabbe881a12

    SHA1

    8858d9d934b7aa9330ee73de6c476acf19929ff6

    SHA256

    58f381c3a0a0ace6321da22e40bd44a597bd98b9c9390ab9258426b5cf75a7a5

    SHA512

    97ba9fceab995d4bef706f8deef99e06862999734ebe6a05832c710104479c6337cbf0a76e1c1e0f91566a61334dc100d837dfd049e20da765fe49def684f9c9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA
    Filesize

    410B

    MD5

    f851ae3bef0dffd3e4c65ce2135832e1

    SHA1

    ec94c7f6901720253c5c88c7dccb25ec6ae6a20b

    SHA256

    c069c13f6b277f1e5c402689f5d31bebe7c50978531469fba941f74bbd0dd8c3

    SHA512

    efc63306f65f4e1b47194abc0f734e0958bf61d46a3a165af0809dc5bd51cb5dcfd6ed11c1fe0f58274ee6044ff510f97fd0754dce27d64a536ebc39863652f5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    618dc20d305f92aea80b9ffc977e03a9

    SHA1

    3626f44464479ca21db784ccb09cc3686407d5ed

    SHA256

    5f483164e1b7a104124f6dd18e863801bb056bec85420c9537b0bb7a328c29c6

    SHA512

    c9025316d8c8d030780d2bb2dc92aac35c8249d52b493f1e34524a85894f6b8de4f3d4ed00303bcc0d4828b1f21b2f1b1bdfb196e175e2232c9ff545a36daba6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1d0a6bfe663ebfbe40a29821b8675c2b

    SHA1

    b1f46b240bf538a4b39060a2b65e45c2345ed886

    SHA256

    2faa05ff152b270fee6fc27173b4adbb5e7ea24fbe63975d82273fc056748d83

    SHA512

    f3c644d2811eacfe2cbb16537edd8f90f4731ddf053b4cbc0adc188acbd8f80dd7007bb2a60c212a11b89b6e9669aa08b8d75239ba6888152593a5766740a884

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    11ea0d6c12d4c4c84e07e88a8e4c0267

    SHA1

    124a6bb754fc7ae4db1a35024240148ac0cb2f0b

    SHA256

    0547adfd86d44bc5042a7ddad0d5ba749ea87c536b93d6574542a73c892686aa

    SHA512

    6fb8e8db0bcf76e009d9f2ae53762d43d4c6f976b92779ef77fe720027f07d57c46bb017cf7785f6c08b5d0b0a7393074d76d5d4ad2800af4d0794dba014af9d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    07da47514d64fac1fd9c858fe4390978

    SHA1

    d2b45add76c51e8832befd7104ed09cf004e5ee1

    SHA256

    ced84888519651e79132e81b26404aad56fabb31cfbb0deb627ad2bf65fffdc0

    SHA512

    9b426536b707c7062b30d49fca7d0e012e1187422db53a76985fed9ffa16690ef6c0510c8680d9ea8afe1f39bc3c11173c1dead2162a360ae104749749ce4659

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    600cf714b477bb90d826e83911ddd773

    SHA1

    f55d021f1f1ee992cef397aeb88557cd5b430bb3

    SHA256

    847cc3f6c30f364fe77c12f13f5db9c8bb80e436e20bc41819d30bb7c5a4e01f

    SHA512

    e13528a3cb67f7bfe7941c2c746f8645e5a36a0d378cf225a13c5b40189c7440f374cb9a37e4f15670941e706619d75accf8fbbac81ed5cb72bb0a6c1835e68e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9bf9632398a9dc1e6daf9b7ae8878a43

    SHA1

    83ab50daf7e88610454dda630fee115d01db1d35

    SHA256

    f6f742fe0234c6cade33864dde5dc9ed8a44a885f57f1a99e14c536236e17d3e

    SHA512

    51a350da8c6fa5db983c9a70fbeb6eeb3edebfb2410e69a2e3371209bc4d129406b1b88606cd905dc939760dd7395b9f901509c8aab8f5c730a361180b69b905

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    233d209a66d3c1e7200f8c0efb066e0b

    SHA1

    80dbfea548b3e009757f1d2c5904c8498d2a4464

    SHA256

    c61ba090731a001471bff269710ba574f59b6006da16c2800f465a22923643dd

    SHA512

    ae75cedf93918ef8ab60798a5e9eb2a771f895bbb98e6e5a950598ed568d064917504be95b8086965942e909d7fc18eb5ffda9c549f4487de7243acdaf013ff6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6b399abe6f890055c12311ef1cb728c2

    SHA1

    f219f49f1c095d98f02de54a7cb01439ab3234af

    SHA256

    3bc21397938732f79097140e66f611ad95a7e6aec64a338b5a299c3c65ada375

    SHA512

    b07f3306a0973cfffac68085d8957860387c2844832b312da0aa0469dca81584d5cf0aaa52d3eacf2f53df67fa53487671484040c6c0c25922bddcee5dc8d9a8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    afed024c223cc80119bb81c1aeedccbb

    SHA1

    e4d748feb5656fa983fcb3e22932ea8035ccb958

    SHA256

    59f2cfe816df84cb046478bff71a2158ea3dd9377cf5fa8741a84559833ccbd3

    SHA512

    6868e827d553a7cc46ca79572df20255b58caf2f27937996221f04b4d2d9f0237616eadfe1fbafaa8d4ba6ac61447fee408e1efac54063f67789bee2bca56a1a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    28703123ba00a271a495a4a0156c4fb8

    SHA1

    53e4de00dd19eeef585e2039ff73a47ebcb45129

    SHA256

    86fdfd0d33420de1123cceebc36c036e85fccf303fe65883edfbeca1db457275

    SHA512

    c9e592e2055ae37d994ce964857c1e9ff852cdf1f96d1d052be1a9c6e16acdbb8dac5373fec4affe4eb4a675a58fbb621d4b2f2403090e3c45446c7efd5d2e19

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\CAF4703619713E3F18D8A9D5D88D6288_F2DAF19C1F776537105D08FC8D978464
    Filesize

    392B

    MD5

    46a9d6076a9faec332b38bf2be1b398e

    SHA1

    7daa11fe09b03d3e7c2c95ca1275e11bc0e8f74e

    SHA256

    357a1675e5fba52b598b1841aeeee50f3c185c2768cc3f61b0480839348bbe85

    SHA512

    d205e67d55dbb355476d85286cdb77cf1a47a4793b9d6eaa76bd24a4878199cbec4ac63efbb0caff46ec9e674051ab93211c2bd89f7e5eb58a38df3af2c09dc7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    384b2688071d00f1b4a76b3d90607dfd

    SHA1

    1830a500f12fd287d462b7da8151d08b6a3d48f5

    SHA256

    a502028e4161d548f292bbb5c8a559e09dc38adc2b0f362b6ba08772cb1be726

    SHA512

    311937ecc1e1b4f9b16fcee2e658196d01c1611b14febcb7f75d7f1aff09651bafb8cbcb74ac9ac90d9a46daa27e95c6a4a6fee346f602095cf9d1adaeb5701f

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab96E4.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar96E7.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar9882.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit