latentbot | 314e60f5d5eb9ba21f528be5f2cb670217270d39992837fd404c8dbc2aee1088 | Triage

Sharing

General

Target

42a3ee88625d225116267b6a20ab7403_JaffaCakes118
Size

48KB
Sample

240713-vytn2szfjm
MD5

42a3ee88625d225116267b6a20ab7403
SHA1

82a19db4a570b75d98038b2c7d5c59299e1ee7ae
SHA256

314e60f5d5eb9ba21f528be5f2cb670217270d39992837fd404c8dbc2aee1088
SHA512

8320d41676e0618b2c1a14ab96695ab86066124fe47271c14497f7507b68b40858e8a60035e3bf74cdfa54e3a3c0001c95a6d892a5b50fbcd4dd2aa47ae4fa1f
SSDEEP

768:pVdmvmGO0sP1kIuNlFzFpB1EArfWmvmGOY:QvmGO0s9mrbZrfjvmGO

Score

10^/10

latentbot trojan

Malware Config

Extracted

Family

latentbot

C2

atualizador.zapto.org

Targets

- Target
  
  42a3ee88625d225116267b6a20ab7403_JaffaCakes118
- Size
  
  48KB
- MD5
  
  42a3ee88625d225116267b6a20ab7403
- SHA1
  
  82a19db4a570b75d98038b2c7d5c59299e1ee7ae
- SHA256
  
  314e60f5d5eb9ba21f528be5f2cb670217270d39992837fd404c8dbc2aee1088
- SHA512
  
  8320d41676e0618b2c1a14ab96695ab86066124fe47271c14497f7507b68b40858e8a60035e3bf74cdfa54e3a3c0001c95a6d892a5b50fbcd4dd2aa47ae4fa1f
- SSDEEP
  
  768:pVdmvmGO0sP1kIuNlFzFpB1EArfWmvmGOY:QvmGO0s9mrbZrfjvmGO
Score

10^/10

latentbot trojan
- LatentBot
  Modular trojan written in Delphi which has been in-the-wild since 2013.
  trojan latentbot
- Drops startup file
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

latentbottrojan

behavioral2

latentbottrojan