latrodectus | a459ce4bfb5d649410231bd4776c194b0891c8c5328bafc22184fe3111c0b3e7 | Triage

Sharing

General

Target

a459ce4bfb5d649410231bd4776c194b0891c8c5328bafc22184fe3111c0b3e7.exe
Size

60KB
Sample

240908-mkl32s1dpm
MD5

e915134e199c81831b6c7425b460625b
SHA1

717d58c54240c7ca5a86337f1c0130e02b908304
SHA256

a459ce4bfb5d649410231bd4776c194b0891c8c5328bafc22184fe3111c0b3e7
SHA512

54fa3d45755460c0f2e2aeb7d7efa8e3ec6840cab897cc35b6728fdd6ba2412bd240224249483d872808a11b52096044c9870e21353effbc05698f1137e74d6d
SSDEEP

768:Kn3KIOWOiLVYVHSXgGpu/aMxuyr3HT+WVXjS6c54GzzNUTf8eg/G:K39OiJYVQl9k3H9Xyuszwf8eg/G

Score

10^/10

latrodectus loader

Malware Config

Extracted

Family

latrodectus

C2

https://carflotyup.com/live/

https://worlpquano.com/live/

Targets

- Target
  
  a459ce4bfb5d649410231bd4776c194b0891c8c5328bafc22184fe3111c0b3e7.exe
- Size
  
  60KB
- MD5
  
  e915134e199c81831b6c7425b460625b
- SHA1
  
  717d58c54240c7ca5a86337f1c0130e02b908304
- SHA256
  
  a459ce4bfb5d649410231bd4776c194b0891c8c5328bafc22184fe3111c0b3e7
- SHA512
  
  54fa3d45755460c0f2e2aeb7d7efa8e3ec6840cab897cc35b6728fdd6ba2412bd240224249483d872808a11b52096044c9870e21353effbc05698f1137e74d6d
- SSDEEP
  
  768:Kn3KIOWOiLVYVHSXgGpu/aMxuyr3HT+WVXjS6c54GzzNUTf8eg/G:K39OiJYVQl9k3H9Xyuszwf8eg/G
Score

10^/10

latrodectus loader
- Latrodectus loader
  Latrodectus is a loader written in C++.
  loader latrodectus
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

latrodectusloader