latrodectus | 0c281abf4ce958882aad9f7a63b90d9ba8a4d892c51a2b36414d6c002294a081 | Triage

Submit
Reports

Overview

overview

Static

static

1

Document-13-01-22.js

windows10-2004-x64

Sharing

General

Target

Document-13-01-22.js
Size

714KB
Sample

240913-p9hs2a1hmr
MD5

fd0ee9a56cfb3751378b148433d7ad24
SHA1

3957cda422b8882a7f7de7e809f35e7a06b233dd
SHA256

0c281abf4ce958882aad9f7a63b90d9ba8a4d892c51a2b36414d6c002294a081
SHA512

c7e041ec3ea9558ee73b1e8c08afdb293c48331c90f1ba5e67a695c765b98ef9ea878a11d86a8c58470a1ddda3d9edb157067c6d8b7a62f1a1a63a7d6a2d3e26
SSDEEP

12288:GCyWLL2jet73JMWCz/HnEE9BLFAsQOo1zDoTKTRMJ:GCH2q73JMW0EIBhAKo1zDmMC

Score

10^/10

latrodectus discovery execution loader

Static task

static1

Behavioral task

behavioral1

Sample

Document-13-01-22.js

Resource

win10v2004-20240802-en

latrodectus discovery execution loader

windows10-2004-x64

13 signatures

150 seconds

Malware Config

Extracted

Family

latrodectus

C2

https://isomicrotich.com/test/

https://rilomenifis.com/test/

Targets

- Target
  
  Document-13-01-22.js
- Size
  
  714KB
- MD5
  
  fd0ee9a56cfb3751378b148433d7ad24
- SHA1
  
  3957cda422b8882a7f7de7e809f35e7a06b233dd
- SHA256
  
  0c281abf4ce958882aad9f7a63b90d9ba8a4d892c51a2b36414d6c002294a081
- SHA512
  
  c7e041ec3ea9558ee73b1e8c08afdb293c48331c90f1ba5e67a695c765b98ef9ea878a11d86a8c58470a1ddda3d9edb157067c6d8b7a62f1a1a63a7d6a2d3e26
- SSDEEP
  
  12288:GCyWLL2jet73JMWCz/HnEE9BLFAsQOo1zDoTKTRMJ:GCH2q73JMW0EIBhAKo1zDmMC
Score

10^/10

latrodectus discovery execution loader
- Detects Latrodectus
  Detects Latrodectus v1.4.
- Latrodectus family
  latrodectus
- Latrodectus loader
  Latrodectus is a loader written in C++.
  loader latrodectus
- Executes dropped EXE
- Loads dropped DLL
- Blocklisted process makes network request
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

JavaScript

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

latrodectusdiscoveryexecutionloader

© 2018-2025

Terms | Privacy