latentbot | 33c5d3f8f4030626a2cdfc91d48ae5b3d3a026bfc40910c2f81e9ffff8f7879b | Triage

Sharing

General

Target

0f047e39b8ae7813456cb1d4e592f59a_JaffaCakes118
Size

168KB
Sample

241003-qrybfaybrn
MD5

0f047e39b8ae7813456cb1d4e592f59a
SHA1

bf044f69f1d16efdd17c19690e6ca065c62d664b
SHA256

33c5d3f8f4030626a2cdfc91d48ae5b3d3a026bfc40910c2f81e9ffff8f7879b
SHA512

0630bdea1db9bbaef3f551706a393856f6fb53123bac7090ad0bb6a3edfe245ded1b6893e5e460e4b45db3d31cac4c3cf9ebaf3749ca3c1ea73e065a32826fee
SSDEEP

3072:NhSrFTmEvV0Wyw6iBIi+s+paYm3v/UjIbp1Nh01mGYkzGmNQEw:NhSrFTmdidm9IbFm1mGYVmNb

Score

10^/10

latentbot discovery trojan

Malware Config

Extracted

Family

latentbot

C2

cybergateperez.zapto.org

Targets

- Target
  
  0f047e39b8ae7813456cb1d4e592f59a_JaffaCakes118
- Size
  
  168KB
- MD5
  
  0f047e39b8ae7813456cb1d4e592f59a
- SHA1
  
  bf044f69f1d16efdd17c19690e6ca065c62d664b
- SHA256
  
  33c5d3f8f4030626a2cdfc91d48ae5b3d3a026bfc40910c2f81e9ffff8f7879b
- SHA512
  
  0630bdea1db9bbaef3f551706a393856f6fb53123bac7090ad0bb6a3edfe245ded1b6893e5e460e4b45db3d31cac4c3cf9ebaf3749ca3c1ea73e065a32826fee
- SSDEEP
  
  3072:NhSrFTmEvV0Wyw6iBIi+s+paYm3v/UjIbp1Nh01mGYkzGmNQEw:NhSrFTmdidm9IbFm1mGYVmNb
Score

10^/10

latentbot discovery trojan
- LatentBot
  Modular trojan written in Delphi which has been in-the-wild since 2013.
  trojan latentbot
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

latentbotdiscoverytrojan

behavioral2

latentbotdiscoverytrojan