latentbot | fbc1135baf2f0ac039b3ab47f872119c1cf21239a3a2c9f643574d729d3aabb3 | Triage

Sharing

General

Target

6bbcafc22741242c43789d4d95b43811_JaffaCakes118
Size

13KB
Sample

241022-yr36patekj
MD5

6bbcafc22741242c43789d4d95b43811
SHA1

aa445824803d4a22ca98772a3a2e07dee624b81e
SHA256

fbc1135baf2f0ac039b3ab47f872119c1cf21239a3a2c9f643574d729d3aabb3
SHA512

a5bf0c8c9011e035f795fceb44f2583000404eca7ea8bc9dc6fbc2bcee8d02c916240671049cd6ad749121dc5573989b721f22ffaad602f6890c73b17b407a2f
SSDEEP

192:rQhzajYqwAO9G+/vvTs7hXbfym4GJVbBftJy/suiXAO6vQNi/60un/T8qvROdjzJ:shzaNwAO9GiM5fdttt4Qi/60G78s4djN

Score

10^/10

latentbot discovery evasion pdf trojan

Malware Config

Extracted

Family

latentbot

C2

ratbiiqbtal.zapto.org

Targets

- Target
  
  6bbcafc22741242c43789d4d95b43811_JaffaCakes118
- Size
  
  13KB
- MD5
  
  6bbcafc22741242c43789d4d95b43811
- SHA1
  
  aa445824803d4a22ca98772a3a2e07dee624b81e
- SHA256
  
  fbc1135baf2f0ac039b3ab47f872119c1cf21239a3a2c9f643574d729d3aabb3
- SHA512
  
  a5bf0c8c9011e035f795fceb44f2583000404eca7ea8bc9dc6fbc2bcee8d02c916240671049cd6ad749121dc5573989b721f22ffaad602f6890c73b17b407a2f
- SSDEEP
  
  192:rQhzajYqwAO9G+/vvTs7hXbfym4GJVbBftJy/suiXAO6vQNi/60un/T8qvROdjzJ:shzaNwAO9GiM5fdttt4Qi/60G78s4djN
Score

10^/10

latentbot discovery trojan
- LatentBot
  Modular trojan written in Delphi which has been in-the-wild since 2013.
  trojan latentbot
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

latentbotdiscoverytrojan

behavioral2