latentbot | de26b4254f2ded64b2f2c26e3ca3eaaeffba74b49e8e82a7ef038ea9e138cc0d | Triage

Sharing

General

Target

8c0cb6989a0dfcc4498d13c0ba468a42_JaffaCakes118
Size

13KB
Sample

241103-sazt2sxerj
MD5

8c0cb6989a0dfcc4498d13c0ba468a42
SHA1

e21d6741fcc9529ef7f63138848fe08d044f7753
SHA256

de26b4254f2ded64b2f2c26e3ca3eaaeffba74b49e8e82a7ef038ea9e138cc0d
SHA512

cd35e4a29e570efca4af33c2b351ab83e6d4bf22174ea1096370267ecc6908a4b91a91ea1fca4d497b125ff4ed5350e4efa92b4f221e95425fc89d3a278b30f3
SSDEEP

192:rQhzajYqwAO9G+/vvTs7hXbfym4GJVbBftJy/suiXOvQNi/60un/T8qvROdjzwu:shzaNwAO9GiM5fdtttcQi/60G78s4djN

Score

10^/10

latentbot discovery evasion pdf trojan

Malware Config

Extracted

Family

latentbot

C2

ratbiiqbtal.zapto.org

Targets

- Target
  
  8c0cb6989a0dfcc4498d13c0ba468a42_JaffaCakes118
- Size
  
  13KB
- MD5
  
  8c0cb6989a0dfcc4498d13c0ba468a42
- SHA1
  
  e21d6741fcc9529ef7f63138848fe08d044f7753
- SHA256
  
  de26b4254f2ded64b2f2c26e3ca3eaaeffba74b49e8e82a7ef038ea9e138cc0d
- SHA512
  
  cd35e4a29e570efca4af33c2b351ab83e6d4bf22174ea1096370267ecc6908a4b91a91ea1fca4d497b125ff4ed5350e4efa92b4f221e95425fc89d3a278b30f3
- SSDEEP
  
  192:rQhzajYqwAO9G+/vvTs7hXbfym4GJVbBftJy/suiXOvQNi/60un/T8qvROdjzwu:shzaNwAO9GiM5fdtttcQi/60G78s4djN
Score

10^/10

latentbot discovery trojan
- LatentBot
  Modular trojan written in Delphi which has been in-the-wild since 2013.
  trojan latentbot
- Latentbot family
  latentbot
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

latentbotdiscoverytrojan

behavioral2