General

  • Target

    86bb6a58463ada6fcdc76f3cf703f2d3_JaffaCakes118

  • Size

    657KB

  • Sample

    240810-tjpwwa1bpa

  • MD5

    86bb6a58463ada6fcdc76f3cf703f2d3

  • SHA1

    ebc4b35dcde4503203d7ba225a8ce3cad10f0325

  • SHA256

    7c995ef051527088c5d0f86663ce90fc736099c411a8ee8778c1463c479d7ada

  • SHA512

    036a2560a76d82221b2521e927f05ff2701c1d4d5199a1986c72765f65b5043a72766837d60e8ea0f8ca501f730c831de8adcc7c080e1a246535cb53bde7343f

  • SSDEEP

    12288:SOANXryu1S69QwWBIlVi4o858nFBKgmvtOwUATgDQ85x:TANOCS6qwWB0V5o8mnqvtrdgDQ8v

Malware Config

Extracted

Family

latentbot

C2

whyamiasian.zapto.org

Targets

    • Target

      86bb6a58463ada6fcdc76f3cf703f2d3_JaffaCakes118

    • Size

      657KB

    • MD5

      86bb6a58463ada6fcdc76f3cf703f2d3

    • SHA1

      ebc4b35dcde4503203d7ba225a8ce3cad10f0325

    • SHA256

      7c995ef051527088c5d0f86663ce90fc736099c411a8ee8778c1463c479d7ada

    • SHA512

      036a2560a76d82221b2521e927f05ff2701c1d4d5199a1986c72765f65b5043a72766837d60e8ea0f8ca501f730c831de8adcc7c080e1a246535cb53bde7343f

    • SSDEEP

      12288:SOANXryu1S69QwWBIlVi4o858nFBKgmvtOwUATgDQ85x:TANOCS6qwWB0V5o8mnqvtrdgDQ8v

    • Darkcomet

      DarkComet is a remote access trojan (RAT) developed by Jean-Pierre Lesueur.

    • LatentBot

      Modular trojan written in Delphi which has been in-the-wild since 2013.

MITRE ATT&CK Enterprise v15

Tasks