latentbot | 4a3a0096da6cae09ca48404837f4193a1eb8d83bbc0b0723f33fee3bdc7fa8e0 | Triage

Sharing

General

Target

JaffaCakes118_37a937a69ca7001d8b675099d1242d04
Size

12KB
Sample

250126-v2edjayngk
MD5

37a937a69ca7001d8b675099d1242d04
SHA1

19ac1c206eef105ff9cd761dd1ce8c9041c2a27b
SHA256

4a3a0096da6cae09ca48404837f4193a1eb8d83bbc0b0723f33fee3bdc7fa8e0
SHA512

6cfe0fb45e8a73be3e79e4b5080222c48c4ab4c35bcbb76e9fea78b16d3265ec39891a10560f12b8030ab2462b34ade7a1964627b5e2df0f3757b6de8e345517
SSDEEP

384:6hzaNwAO9GiJlDmlAloSAhmbZ9/8Qi/60G7J8vKIs:ahZGirHAhmbZ90QC6dJiKH

Score

10^/10

latentbot discovery evasion pdf trojan

Malware Config

Extracted

Family

latentbot

C2

geurdenwoldran.zapto.org

Targets

- Target
  
  JaffaCakes118_37a937a69ca7001d8b675099d1242d04
- Size
  
  12KB
- MD5
  
  37a937a69ca7001d8b675099d1242d04
- SHA1
  
  19ac1c206eef105ff9cd761dd1ce8c9041c2a27b
- SHA256
  
  4a3a0096da6cae09ca48404837f4193a1eb8d83bbc0b0723f33fee3bdc7fa8e0
- SHA512
  
  6cfe0fb45e8a73be3e79e4b5080222c48c4ab4c35bcbb76e9fea78b16d3265ec39891a10560f12b8030ab2462b34ade7a1964627b5e2df0f3757b6de8e345517
- SSDEEP
  
  384:6hzaNwAO9GiJlDmlAloSAhmbZ9/8Qi/60G7J8vKIs:ahZGirHAhmbZ90QC6dJiKH
Score

10^/10

latentbot discovery trojan
- LatentBot
  Modular trojan written in Delphi which has been in-the-wild since 2013.
  trojan latentbot
- Latentbot family
  latentbot
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

latentbotdiscoverytrojan

behavioral2