latrodectus | 5ad00b048285f343a0532c429e103e40ca61dd58c642823e026d51d07683cfb6 | Triage

Sharing

General

Target

5ad00b048285f343a0532c429e103e40ca61dd58c642823e026d51d07683cfb6.exe
Size

2.2MB
Sample

250208-d1zjmstphq
MD5

2a14c25eff6022168936b847354335cf
SHA1

d9298858b709c3354f44c5b596101d82ba3f7f96
SHA256

5ad00b048285f343a0532c429e103e40ca61dd58c642823e026d51d07683cfb6
SHA512

a80d62e55e6f5036833deaadfc4ba37670435fb4a27f0fc4fa8d1e082e5e1fd2986ff4070b89a775655172d9a42c0f011426ce400bb53ed00a492889424d7860
SSDEEP

49152:SZzQqIEjvDQPOnRnmSBn/VSlsBtXHWZ+yge:SYsxy

Score

10^/10

latrodectus discovery loader

Malware Config

Extracted

Family

latrodectus

aes.hex

Extracted

Family

latrodectus

Version

1.4

C2

https://apworsindos.com/test/

https://reminasolirol.com/test/

Attributes

group
Mimikast
user_agent
Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; Tob 1.1)

aes.hex

Targets

- Target
  
  5ad00b048285f343a0532c429e103e40ca61dd58c642823e026d51d07683cfb6.exe
- Size
  
  2.2MB
- MD5
  
  2a14c25eff6022168936b847354335cf
- SHA1
  
  d9298858b709c3354f44c5b596101d82ba3f7f96
- SHA256
  
  5ad00b048285f343a0532c429e103e40ca61dd58c642823e026d51d07683cfb6
- SHA512
  
  a80d62e55e6f5036833deaadfc4ba37670435fb4a27f0fc4fa8d1e082e5e1fd2986ff4070b89a775655172d9a42c0f011426ce400bb53ed00a492889424d7860
- SSDEEP
  
  49152:SZzQqIEjvDQPOnRnmSBn/VSlsBtXHWZ+yge:SYsxy
Score

10^/10

latrodectus loader discovery
- Latrodectus family
  latrodectus
- Latrodectus loader
  Latrodectus is a loader written in C++.
  loader latrodectus
- Downloads MZ/PE file
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

latrodectusloader

behavioral2

latrodectusdiscoveryloader