General
-
Target
JaffaCakes118_eade05f93704f2fbeb47d3b6ad535d81
-
Size
116KB
-
Sample
250504-mjyqfsbk61
-
MD5
eade05f93704f2fbeb47d3b6ad535d81
-
SHA1
7602f9196c8700a731ccab9fb63c2b5416997e4c
-
SHA256
d3059a1614fcd1580467173fe80ed57c6e3d7cba8e4facd5caf5f5646062608c
-
SHA512
792b7b6756ffc855449f58aa924858b2b8a59b6749153ba03b4355a33558204163396b429e2cf1a9dca1a189a8b02c44fe38730cb946d1d748e9b101d0625e56
-
SSDEEP
3072:AIO+oYqoz7/I6ODxLPcC5vZ3fy15fULb05/Pbps9dRAu7hV3F6po93LO2LKyHQEf:q+pQ6ALPcC5vZ3fy15Mb05/Pbps9dRAc
Static task
static1
Behavioral task
behavioral1
Sample
JaffaCakes118_eade05f93704f2fbeb47d3b6ad535d81.exe
Resource
win10v2004-20250502-en
Malware Config
Extracted
latentbot
hardenberger.zapto.org
Targets
-
-
Target
JaffaCakes118_eade05f93704f2fbeb47d3b6ad535d81
-
Size
116KB
-
MD5
eade05f93704f2fbeb47d3b6ad535d81
-
SHA1
7602f9196c8700a731ccab9fb63c2b5416997e4c
-
SHA256
d3059a1614fcd1580467173fe80ed57c6e3d7cba8e4facd5caf5f5646062608c
-
SHA512
792b7b6756ffc855449f58aa924858b2b8a59b6749153ba03b4355a33558204163396b429e2cf1a9dca1a189a8b02c44fe38730cb946d1d748e9b101d0625e56
-
SSDEEP
3072:AIO+oYqoz7/I6ODxLPcC5vZ3fy15fULb05/Pbps9dRAu7hV3F6po93LO2LKyHQEf:q+pQ6ALPcC5vZ3fy15Mb05/Pbps9dRAc
-
Latentbot family
-
Modifies firewall policy service
-
Executes dropped EXE
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v16
Persistence
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Create or Modify System Process
1Windows Service
1Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Create or Modify System Process
1Windows Service
1