latentbot | 22e9c51ec7cb44a0447b50a8c1c2f849da99ae8f6d8047043398a501b1b1932e | Triage

Sharing

General

Target

JaffaCakes118_12653fb5b48f96866694d5f7a6f4cd5d
Size

12KB
Sample

250123-a6s29svmfl
MD5

12653fb5b48f96866694d5f7a6f4cd5d
SHA1

d79d8f0e4edc6bec2ffaf1bf5dc5330b47b62152
SHA256

22e9c51ec7cb44a0447b50a8c1c2f849da99ae8f6d8047043398a501b1b1932e
SHA512

b42ff53f57242e7460e80448a041d8ed88d410d9527df00a2a58f12ba220c5fcc3a97713b3678495c0cc4c4748d019316910a1174b417257ec0815c998fd22d4
SSDEEP

384:6hzaNwAO9GiJlDmlAloSAhmbZ9/PQi/60G7J8vKIs:ahZGirHAhmbZ9nQC6dJiKH

Score

10^/10

latentbot discovery evasion pdf trojan

Malware Config

Extracted

Family

latentbot

C2

hafryzwoldran.zapto.org

Targets

- Target
  
  JaffaCakes118_12653fb5b48f96866694d5f7a6f4cd5d
- Size
  
  12KB
- MD5
  
  12653fb5b48f96866694d5f7a6f4cd5d
- SHA1
  
  d79d8f0e4edc6bec2ffaf1bf5dc5330b47b62152
- SHA256
  
  22e9c51ec7cb44a0447b50a8c1c2f849da99ae8f6d8047043398a501b1b1932e
- SHA512
  
  b42ff53f57242e7460e80448a041d8ed88d410d9527df00a2a58f12ba220c5fcc3a97713b3678495c0cc4c4748d019316910a1174b417257ec0815c998fd22d4
- SSDEEP
  
  384:6hzaNwAO9GiJlDmlAloSAhmbZ9/PQi/60G7J8vKIs:ahZGirHAhmbZ9nQC6dJiKH
Score

10^/10

latentbot discovery trojan
- LatentBot
  Modular trojan written in Delphi which has been in-the-wild since 2013.
  trojan latentbot
- Latentbot family
  latentbot
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

latentbotdiscoverytrojan

behavioral2