latrodectus | 334c3f529b1c580ea83e2ea1e85b7a937dcceb3dd3b2a533afb936f53100c222 | Triage

Submit
Reports

Overview

overview

Static

static

1

CN.msi

windows7-x64

CN.msi

windows10-2004-x64

Sharing

General

Target

CN.msi
Size

1.6MB
Sample

240904-snvggsthlf
MD5

329259260ebe046b0e80bec91f632ba0
SHA1

db1184c14af32cf859d7f089d1dacc685257cc11
SHA256

334c3f529b1c580ea83e2ea1e85b7a937dcceb3dd3b2a533afb936f53100c222
SHA512

cfa0235623ec962266dbe9bcba5eac4535eff365aa784e6cf4d2a877aa6fedcc0801e5ba751b35ad176997337b72e4141f42ee07faf1017abcfda42b3228b2a4
SSDEEP

49152:L/c3YuW8zBQSc0ZnSKYZKumZr7AVXP4XnEPvw:CY90ZniK/AVXP

Score

10^/10

latrodectus discovery loader persistence privilege_escalation

Static task

static1

Behavioral task

behavioral1

Sample

CN.msi

Resource

win7-20240903-en

latrodectus discovery loader persistence privilege_escalation

windows7-x64

15 signatures

150 seconds

Behavioral task

behavioral2

Sample

CN.msi

Resource

win10v2004-20240802-en

latrodectus discovery loader persistence privilege_escalation

windows10-2004-x64

15 signatures

150 seconds

Malware Config

Targets

- Target
  
  CN.msi
- Size
  
  1.6MB
- MD5
  
  329259260ebe046b0e80bec91f632ba0
- SHA1
  
  db1184c14af32cf859d7f089d1dacc685257cc11
- SHA256
  
  334c3f529b1c580ea83e2ea1e85b7a937dcceb3dd3b2a533afb936f53100c222
- SHA512
  
  cfa0235623ec962266dbe9bcba5eac4535eff365aa784e6cf4d2a877aa6fedcc0801e5ba751b35ad176997337b72e4141f42ee07faf1017abcfda42b3228b2a4
- SSDEEP
  
  49152:L/c3YuW8zBQSc0ZnSKYZKumZr7AVXP4XnEPvw:CY90ZniK/AVXP
Score

10^/10

latrodectus discovery loader persistence privilege_escalation
- Detects Latrodectus
  Detects Latrodectus v1.4.
- Latrodectus loader
  Latrodectus is a loader written in C++.
  loader latrodectus
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Installer Packages

Privilege Escalation

Event Triggered Execution

Installer Packages

Defense Evasion

System Binary Proxy Execution

Msiexec

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

latrodectusdiscoveryloaderpersistenceprivilege_escalation

behavioral2

latrodectusdiscoveryloaderpersistenceprivilege_escalation

© 2018-2025

Terms | Privacy