latentbot | d59105f97110bfc869d78a144e7f58a5f67ccf946184e280866e02d083d747c7 | Triage

Sharing

General

Target

0f56126bbc1023e566563ee59886c38f_JaffaCakes118
Size

48KB
Sample

240625-ypg6fasckq
MD5

0f56126bbc1023e566563ee59886c38f
SHA1

7b26598d33bec9eea0a80c9680b188e63d5fced3
SHA256

d59105f97110bfc869d78a144e7f58a5f67ccf946184e280866e02d083d747c7
SHA512

063a30f943fe577ccf6b680574d9c92c4a6bccb691c34305584036833508ccf85231910dbc5e12b44a3397e31430eb19427a7f8253965e7435d712513530ee1c
SSDEEP

768:OLVdmvmGO09H9ud/FAB+FWA4fWmvmGOY:vvmGO09dt+Z4fjvmGO

Score

10^/10

latentbot trojan

Malware Config

Extracted

Family

latentbot

C2

atualizador.zapto.org

Targets

- Target
  
  0f56126bbc1023e566563ee59886c38f_JaffaCakes118
- Size
  
  48KB
- MD5
  
  0f56126bbc1023e566563ee59886c38f
- SHA1
  
  7b26598d33bec9eea0a80c9680b188e63d5fced3
- SHA256
  
  d59105f97110bfc869d78a144e7f58a5f67ccf946184e280866e02d083d747c7
- SHA512
  
  063a30f943fe577ccf6b680574d9c92c4a6bccb691c34305584036833508ccf85231910dbc5e12b44a3397e31430eb19427a7f8253965e7435d712513530ee1c
- SSDEEP
  
  768:OLVdmvmGO09H9ud/FAB+FWA4fWmvmGOY:vvmGO09dt+Z4fjvmGO
Score

10^/10

latentbot trojan
- LatentBot
  Modular trojan written in Delphi which has been in-the-wild since 2013.
  trojan latentbot
- Drops startup file
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

latentbottrojan

behavioral2

latentbottrojan