Overview

overview

10

Static

static

1

9f5ae302ea...d98.js

windows7-x64

10

9f5ae302ea...d98.js

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9f5ae302ea1ed87c64e26390eb6f2a90593b3049aaa1292d495d4f93ac9b2d98

  • Size

    1.3MB

  • Sample

    240917-v8svhawbmj

  • MD5

    e2d9ca6364ff2314bfbcc263d7fea8fd

  • SHA1

    c4c38c618cdb1663569606e06f64975ee1b37793

  • SHA256

    9f5ae302ea1ed87c64e26390eb6f2a90593b3049aaa1292d495d4f93ac9b2d98

  • SHA512

    7e7e28b421e1889762ce6abd40b89ec2ad971b909065aa90d7a95da5a992a70df53aa75d41e24a48b7feb3dc87ab7b6d8223adf9e583d4e96e256ae66509057d

  • SSDEEP

    24576:cQmj6HVNI/sE6lxMkY4Nd5NL4PcTwZP7n3lGIUpeu2GE:cQmj6HVe/D6lxMkY4Nd5NLicTQPz3lGo

Score
10/10
latrodectusdiscoveryexecutionloader

Malware Config

Extracted

Family

latrodectus

C2

https://isomicrotich.com/test/

https://rilomenifis.com/test/

Targets

    • Target

      9f5ae302ea1ed87c64e26390eb6f2a90593b3049aaa1292d495d4f93ac9b2d98

    • Size

      1.3MB

    • MD5

      e2d9ca6364ff2314bfbcc263d7fea8fd

    • SHA1

      c4c38c618cdb1663569606e06f64975ee1b37793

    • SHA256

      9f5ae302ea1ed87c64e26390eb6f2a90593b3049aaa1292d495d4f93ac9b2d98

    • SHA512

      7e7e28b421e1889762ce6abd40b89ec2ad971b909065aa90d7a95da5a992a70df53aa75d41e24a48b7feb3dc87ab7b6d8223adf9e583d4e96e256ae66509057d

    • SSDEEP

      24576:cQmj6HVNI/sE6lxMkY4Nd5NL4PcTwZP7n3lGIUpeu2GE:cQmj6HVe/D6lxMkY4Nd5NLicTQPz3lGo

    Score
    10/10
    latrodectusdiscoveryexecutionloader

    • Detects Latrodectus

      Detects Latrodectus v1.4.

    • Latrodectus family

      latrodectus

    • Latrodectus loader

      Latrodectus is a loader written in C++.

      loaderlatrodectus

    • Executes dropped EXE

    • Loads dropped DLL

    • Blocklisted process makes network request

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks