latrodectus | de56b90b222c4f01351771e01e82a4d815a837d798e6ba2cb6d68ca34233f8c2 | Triage

Sharing

General

Target

de56b90b222c4f01351771e01e82a4d815a837d798e6ba2cb6d68ca34233f8c2.exe
Size

2.2MB
Sample

250207-ghbawa1ldv
MD5

6fa3404dcd5a4dd732f36f59dd24405f
SHA1

3a6134c4837c8616bbce00c0064436483ffde8e2
SHA256

de56b90b222c4f01351771e01e82a4d815a837d798e6ba2cb6d68ca34233f8c2
SHA512

d1440bc92411885597c64fa9a6c152a9276a2f615c02956ac67814d9000cd8c66ed976126d12c603aa20c748700e14b5dc9272548e2683add9a3e72992d10099
SSDEEP

49152:/ZzQqIEjvDQPOnR5mSBn/VSlsBzXHWtSyZS:/YcxyZ

Score

10^/10

latrodectus loader

Malware Config

Extracted

Family

latrodectus

Version

1.4

C2

https://apworsindos.com/test/

https://reminasolirol.com/test/

Attributes

group
Mimikast
user_agent
Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; Tob 1.1)

aes.hex

Extracted

Family

latrodectus

aes.hex

Targets

- Target
  
  de56b90b222c4f01351771e01e82a4d815a837d798e6ba2cb6d68ca34233f8c2.exe
- Size
  
  2.2MB
- MD5
  
  6fa3404dcd5a4dd732f36f59dd24405f
- SHA1
  
  3a6134c4837c8616bbce00c0064436483ffde8e2
- SHA256
  
  de56b90b222c4f01351771e01e82a4d815a837d798e6ba2cb6d68ca34233f8c2
- SHA512
  
  d1440bc92411885597c64fa9a6c152a9276a2f615c02956ac67814d9000cd8c66ed976126d12c603aa20c748700e14b5dc9272548e2683add9a3e72992d10099
- SSDEEP
  
  49152:/ZzQqIEjvDQPOnR5mSBn/VSlsBzXHWtSyZS:/YcxyZ
Score

10^/10

latrodectus loader
- Latrodectus family
  latrodectus
- Latrodectus loader
  Latrodectus is a loader written in C++.
  loader latrodectus
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

latrodectusloader

behavioral2

latrodectusloader