Overview

overview

10

Static

static

3

88563cccda...ed.exe

windows7-x64

7

88563cccda...ed.exe

windows10-2004-x64

10

88563cccda...ed.exe

windows11-21h2-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    88563cccda268d844631b4be7d8ce1df324a79c3f79929e1c345fde64b348ded.exe

  • Size

    13.1MB

  • Sample

    240801-q1a79sxeqa

  • MD5

    c78130c05af734cb9622141da98981a2

  • SHA1

    5f7ced55984717318bb01ed0fc185b4d31d19d1d

  • SHA256

    88563cccda268d844631b4be7d8ce1df324a79c3f79929e1c345fde64b348ded

  • SHA512

    849756a9a5a050b2b353b6b83451d8aec2b5cc720895f1cfbbb11f8da45b7065473feda71b916bcd89dcec15df57ee452677dc7732c86d1182bc8483777dd025

  • SSDEEP

    393216:v8jQq1hZsUlGp1ugEkHbeCEDHJ83a10HXdwWwsA3:v8jQqpM2gvCCEDpEaotwj

Score
10/10
latrodectusdiscoveryloaderpyinstallerspywarestealer

Malware Config

Extracted

Family

latrodectus

C2

https://spikeliftall.com/live/

https://godfaetret.com/live/

Targets

    • Target

      88563cccda268d844631b4be7d8ce1df324a79c3f79929e1c345fde64b348ded.exe

    • Size

      13.1MB

    • MD5

      c78130c05af734cb9622141da98981a2

    • SHA1

      5f7ced55984717318bb01ed0fc185b4d31d19d1d

    • SHA256

      88563cccda268d844631b4be7d8ce1df324a79c3f79929e1c345fde64b348ded

    • SHA512

      849756a9a5a050b2b353b6b83451d8aec2b5cc720895f1cfbbb11f8da45b7065473feda71b916bcd89dcec15df57ee452677dc7732c86d1182bc8483777dd025

    • SSDEEP

      393216:v8jQq1hZsUlGp1ugEkHbeCEDHJ83a10HXdwWwsA3:v8jQqpM2gvCCEDpEaotwj

    Score
    10/10
    spywarestealerlatrodectusdiscoveryloader

    • Latrodectus loader

      Latrodectus is a loader written in C++.

      loaderlatrodectus

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer
    behavioral1behavioral2behavioral3

MITRE ATT&CK Enterprise v15

Tasks