bruteratel | 83859acdf4ac22927fa88f715666653807501db6f1865a3657599b4c5d130bb2

General

Target

83859acdf4ac22927fa88f715666653807501db6f1865a3657599b4c5d130bb2.exe
Size

2.9MB
Sample

250314-sn34mattbv
MD5

ae544fbeea5fa73ded6f7560afd44790
SHA1

644e5adb482709f313796f3ab16f247f0bce1c9c
SHA256

83859acdf4ac22927fa88f715666653807501db6f1865a3657599b4c5d130bb2
SHA512

ae63e2dbd53c7876aee30012d38e7ea34f8362ef34ef26935b1ca4cad11eda6e9153fda592bfeaaff0019432882ec130f7ecc4c5038beb2ed502fefa14562c2c
SSDEEP

49152:BGIdGbhz/MPFF/6R6MkFjfnm4pzW3GhvRBDsVYArO/0/zoIIdxuS2zPNTQmh5bkp:BlZJqrbzoIIyS5mh5bkOEk1q

Score

10^/10

Malware Config

Extracted

Family

latrodectus

Version

1.4

C2

https://horetimodual.com/test/

https://forefilarem.com/test/

aes.hex

Targets

- Target
  
  83859acdf4ac22927fa88f715666653807501db6f1865a3657599b4c5d130bb2.exe
- Size
  
  2.9MB
- MD5
  
  ae544fbeea5fa73ded6f7560afd44790
- SHA1
  
  644e5adb482709f313796f3ab16f247f0bce1c9c
- SHA256
  
  83859acdf4ac22927fa88f715666653807501db6f1865a3657599b4c5d130bb2
- SHA512
  
  ae63e2dbd53c7876aee30012d38e7ea34f8362ef34ef26935b1ca4cad11eda6e9153fda592bfeaaff0019432882ec130f7ecc4c5038beb2ed502fefa14562c2c
- SSDEEP
  
  49152:BGIdGbhz/MPFF/6R6MkFjfnm4pzW3GhvRBDsVYArO/0/zoIIdxuS2zPNTQmh5bkp:BlZJqrbzoIIyS5mh5bkOEk1q
Score

10^/10

bruteratel latrodectus backdoor loader
- Brute Ratel C4
  A customized command and control framework for red teaming and adversary simulation.
  backdoor bruteratel
- Bruteratel family
  bruteratel
- Detect BruteRatel badger
- Detects Latrodectus
  Detects Latrodectus v1.4.
- Latrodectus family
  latrodectus
- Latrodectus loader
  Latrodectus is a loader written in C++.
  loader latrodectus
- Blocklisted process makes network request
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1

T1112

Subvert Trust Controls

1

T1553

Install Root Certificate

1

T1553.004

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

Brute Ratel C4

Bruteratel family

Detect BruteRatel badger

Detects Latrodectus

Latrodectus family

Latrodectus loader

Blocklisted process makes network request

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2