Overview

overview

10

Static

static

3

489541a61e...a6.dll

windows7-x64

10

489541a61e...a6.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    489541a61e66ed36c56d7c7b35ed57129a9febb201efb9156420cbe9d325c9a6.exe

  • Size

    1.8MB

  • Sample

    250319-hzdyrsxny8

  • MD5

    06ba9f3ecacbca2920c8272a7719ca76

  • SHA1

    a22039c0bcfdf41a2c2f6f37aa38e2d77f36f39a

  • SHA256

    489541a61e66ed36c56d7c7b35ed57129a9febb201efb9156420cbe9d325c9a6

  • SHA512

    38ba64295f030a630b0cd2f3db915743cf801d454b50a6cb36653a75384da15658682846c3ea78fe1637b5fb3ecef58a4a39e1fd4bb21cc16e4f226f78d9d27b

  • SSDEEP

    49152:9srSb808eyLlSRqVNPseFyTJ1CLXuzYYjc8F4HcDsYfPFGMSugRP:KL1PYTI9Hco

Score
10/10
latrodectusloader

Malware Config

Extracted

Family

latrodectus

Version

1.4

C2

https://remustarofilac.com/test/

https://horetimodual.com/test/
Attributes
  • group

    Ferrary

  • user_agent

    Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; Tob 1.1)

aes.hex
1
d623b8ef6226cec3e24c55127de873e7839c776bb1a93b57b25fdbea0db68ea2

Extracted

Family

latrodectus

aes.hex
1
d623b8ef6226cec3e24c55127de873e7839c776bb1a93b57b25fdbea0db68ea2

Targets

    • Target

      489541a61e66ed36c56d7c7b35ed57129a9febb201efb9156420cbe9d325c9a6.exe

    • Size

      1.8MB

    • MD5

      06ba9f3ecacbca2920c8272a7719ca76

    • SHA1

      a22039c0bcfdf41a2c2f6f37aa38e2d77f36f39a

    • SHA256

      489541a61e66ed36c56d7c7b35ed57129a9febb201efb9156420cbe9d325c9a6

    • SHA512

      38ba64295f030a630b0cd2f3db915743cf801d454b50a6cb36653a75384da15658682846c3ea78fe1637b5fb3ecef58a4a39e1fd4bb21cc16e4f226f78d9d27b

    • SSDEEP

      49152:9srSb808eyLlSRqVNPseFyTJ1CLXuzYYjc8F4HcDsYfPFGMSugRP:KL1PYTI9Hco

    Score
    10/10
    latrodectusloader
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.