latrodectus | d5b3ebdbbe68686a5c112c031a79dd22a3a2719fd7f7d67f0d42e7ebb7dba682 | Triage

Sharing

General

Target

d5b3ebdbbe68686a5c112c031a79dd22a3a2719fd7f7d67f0d42e7ebb7dba682.exe
Size

2.2MB
Sample

250208-e5qmzawrem
MD5

24740f0f2d658a5d863e93ab33029a41
SHA1

784bf2a4d21e7d60530dccff261c9841e28b7db3
SHA256

d5b3ebdbbe68686a5c112c031a79dd22a3a2719fd7f7d67f0d42e7ebb7dba682
SHA512

a1c8cbbe30b5c6f682163393fc1f7a7fedf505b1d7bfeea70b5bb394ddc4f0b50093cb57876743c778d07f6a6ac17f2d3e37c2c2af210eca10f5384992ddf47c
SSDEEP

49152:2ZzQqIEjvDQPOnRdmSBn/VSlsB/XHW0xyexg:2YYRyN

Score

10^/10

latrodectus discovery loader

Malware Config

Extracted

Family

latrodectus

aes.hex

Extracted

Family

latrodectus

Version

1.4

C2

https://apworsindos.com/test/

https://reminasolirol.com/test/

Attributes

group
Mimikast
user_agent
Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; Tob 1.1)

aes.hex

Targets

- Target
  
  d5b3ebdbbe68686a5c112c031a79dd22a3a2719fd7f7d67f0d42e7ebb7dba682.exe
- Size
  
  2.2MB
- MD5
  
  24740f0f2d658a5d863e93ab33029a41
- SHA1
  
  784bf2a4d21e7d60530dccff261c9841e28b7db3
- SHA256
  
  d5b3ebdbbe68686a5c112c031a79dd22a3a2719fd7f7d67f0d42e7ebb7dba682
- SHA512
  
  a1c8cbbe30b5c6f682163393fc1f7a7fedf505b1d7bfeea70b5bb394ddc4f0b50093cb57876743c778d07f6a6ac17f2d3e37c2c2af210eca10f5384992ddf47c
- SSDEEP
  
  49152:2ZzQqIEjvDQPOnRdmSBn/VSlsB/XHW0xyexg:2YYRyN
Score

10^/10

latrodectus loader discovery
- Latrodectus family
  latrodectus
- Latrodectus loader
  Latrodectus is a loader written in C++.
  loader latrodectus
- Downloads MZ/PE file
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

latrodectusloader

behavioral2

latrodectusdiscoveryloader