Overview

overview

10

Static

static

1

Document-07-01-55.js

windows10-2004-x64

10

Document-07-01-55.js

windows11-21h2-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Document-07-01-55.js

  • Size

    713KB

  • Sample

    240913-ncwg7aygnp

  • MD5

    ffba898288ab821fc44a97804f437e27

  • SHA1

    c66e224adcd5ab4766e6e26b3c6cd26b308cb17b

  • SHA256

    e7fc51310e3318c7220b4373e81d42357e9e6c073bb87d1a18e88ac81a6b4587

  • SHA512

    bed4f49b422c38a057df7c4bfd729560af442f02ccd9a99029d37fb7782ba3ffceead5057b121bb2b16c5f97dd30c670c8be8f12b9ec294ea25a7d10c188f546

  • SSDEEP

    12288:PTm/2pe/TVLLgxVqnm25dtfcdbYzdGMQOOV0LoNB9D1zOw:PTM2pKT9LgxVy55dtfc+53QOOV0LMDND

Score
10/10
latrodectusdiscoveryexecutionloader

Malware Config

Targets

    • Target

      Document-07-01-55.js

    • Size

      713KB

    • MD5

      ffba898288ab821fc44a97804f437e27

    • SHA1

      c66e224adcd5ab4766e6e26b3c6cd26b308cb17b

    • SHA256

      e7fc51310e3318c7220b4373e81d42357e9e6c073bb87d1a18e88ac81a6b4587

    • SHA512

      bed4f49b422c38a057df7c4bfd729560af442f02ccd9a99029d37fb7782ba3ffceead5057b121bb2b16c5f97dd30c670c8be8f12b9ec294ea25a7d10c188f546

    • SSDEEP

      12288:PTm/2pe/TVLLgxVqnm25dtfcdbYzdGMQOOV0LoNB9D1zOw:PTM2pKT9LgxVy55dtfc+53QOOV0LMDND

    Score
    10/10
    latrodectusdiscoveryexecutionloader

    • Detects Latrodectus

      Detects Latrodectus v1.4.

    • Latrodectus loader

      Latrodectus is a loader written in C++.

      loaderlatrodectus

    • Blocklisted process makes network request

    • Executes dropped EXE

    • Loads dropped DLL

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks