latentbot | c1278ba37a220ee65c94e541066ad2665cd24fb8b391f2c74ab59819a5ad7a19 | Triage

Sharing

General

Target

3017647fe452f618c06c623871a9e185_JaffaCakes118
Size

48KB
Sample

240709-m1fafasekb
MD5

3017647fe452f618c06c623871a9e185
SHA1

5c5cc8ed8edd4af9bf1f3cd212ee2378759c80fe
SHA256

c1278ba37a220ee65c94e541066ad2665cd24fb8b391f2c74ab59819a5ad7a19
SHA512

4e3d46c92a59ee2a3a30d09bcae5d9875858d1bfa978bccef141edf8b54cb08c52bc74a638d91f67ac0df174d907c8f55b5bdaa1dd4016afc3e5a368ed7c5744
SSDEEP

384:FU7F3TmDDmGO0QIUH6ir1ga71hwjCHtkDAN2fATmDDmGOjFe:FUdmvmGO05UHpxN1hwj4+AYfWmvmGOY

Score

10^/10

latentbot trojan

Malware Config

Extracted

Family

latentbot

C2

atualizador.zapto.org

Targets

- Target
  
  3017647fe452f618c06c623871a9e185_JaffaCakes118
- Size
  
  48KB
- MD5
  
  3017647fe452f618c06c623871a9e185
- SHA1
  
  5c5cc8ed8edd4af9bf1f3cd212ee2378759c80fe
- SHA256
  
  c1278ba37a220ee65c94e541066ad2665cd24fb8b391f2c74ab59819a5ad7a19
- SHA512
  
  4e3d46c92a59ee2a3a30d09bcae5d9875858d1bfa978bccef141edf8b54cb08c52bc74a638d91f67ac0df174d907c8f55b5bdaa1dd4016afc3e5a368ed7c5744
- SSDEEP
  
  384:FU7F3TmDDmGO0QIUH6ir1ga71hwjCHtkDAN2fATmDDmGOjFe:FUdmvmGO05UHpxN1hwj4+AYfWmvmGOY
Score

10^/10

latentbot trojan
- LatentBot
  Modular trojan written in Delphi which has been in-the-wild since 2013.
  trojan latentbot
- Drops startup file
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

latentbottrojan

behavioral2

latentbottrojan