General

  • Target

    507e5c7af00ae92537f782f9be70a9672260ebc222a07d744eb9d174d2f8fa1a.exe

  • Size

    199KB

  • Sample

    250430-x5q8lsen71

  • MD5

    e52cc2607b5c4f6cac091f671968b3ed

  • SHA1

    96f5b2a9850862b8e4da5b4ebff69390284567de

  • SHA256

    507e5c7af00ae92537f782f9be70a9672260ebc222a07d744eb9d174d2f8fa1a

  • SHA512

    2c7c9ef809b71a1c45c0e05e513e8c509b195b1ea6c2edb13977b1ae5f9ec3a16d2e3fdb09de8882b6e716166653669b914a927f4440b12dfc540257011fa0ec

  • SSDEEP

    6144:EOQrB8badoDqS1qfCuTBFXEiwFaa387PBRAEKrxWbJG6jDx6:FuB8badqqRfCeB6ip7PfRCj

Score
10/10

Malware Config

Extracted

Family

latrodectus

Version

1.0

C2

https://carflotyup.com/live/

https://worlpquano.com/live/

Attributes
  • group

    Neptun

  • user_agent

    Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; Tob 1.1)

Targets

    • Target

      507e5c7af00ae92537f782f9be70a9672260ebc222a07d744eb9d174d2f8fa1a.exe

    • Size

      199KB

    • MD5

      e52cc2607b5c4f6cac091f671968b3ed

    • SHA1

      96f5b2a9850862b8e4da5b4ebff69390284567de

    • SHA256

      507e5c7af00ae92537f782f9be70a9672260ebc222a07d744eb9d174d2f8fa1a

    • SHA512

      2c7c9ef809b71a1c45c0e05e513e8c509b195b1ea6c2edb13977b1ae5f9ec3a16d2e3fdb09de8882b6e716166653669b914a927f4440b12dfc540257011fa0ec

    • SSDEEP

      6144:EOQrB8badoDqS1qfCuTBFXEiwFaa387PBRAEKrxWbJG6jDx6:FuB8badqqRfCeB6ip7PfRCj

    Score
    10/10
    • Latrodectus family

    • Latrodectus loader

      Latrodectus is a loader written in C++.

    • Deletes itself

    • Executes dropped EXE

MITRE ATT&CK Enterprise v16

Tasks