General

  • Target

    EapSimExtDesktop.dll

  • Size

    2.8MB

  • Sample

    250506-v63lxshl9s

  • MD5

    0eddd5cf5d015a8103e4d892d20d783c

  • SHA1

    929b8ea7cc046969ba46909a33bbad425c523647

  • SHA256

    b45136abdb4284ac6d0096a237cb4f146decd034a556ff41356e666c3ce46910

  • SHA512

    449d6f8fccf5fa37bbbd8eb597bd2568093c2d08d7846f49ae413c9b0e641465aeccf70781e503b3d46c6240a81c8f983a58cd5a8fb46e126b8cd2494966ce8e

  • SSDEEP

    49152:KnIe+SpGhXeru2WjHFRThYLm3GKZEtzis6jp2nARHfnTeOIU/I4DwOT/UW53r0pf:Ku7lEUvlIU/IsXT/v5IV

Score
10/10

Malware Config

Extracted

Family

latrodectus

Version

1.4

C2

https://carflotyup.com/test/

https://architrata.com/test/

aes.hex

Targets

    • Target

      EapSimExtDesktop.dll

    • Size

      2.8MB

    • MD5

      0eddd5cf5d015a8103e4d892d20d783c

    • SHA1

      929b8ea7cc046969ba46909a33bbad425c523647

    • SHA256

      b45136abdb4284ac6d0096a237cb4f146decd034a556ff41356e666c3ce46910

    • SHA512

      449d6f8fccf5fa37bbbd8eb597bd2568093c2d08d7846f49ae413c9b0e641465aeccf70781e503b3d46c6240a81c8f983a58cd5a8fb46e126b8cd2494966ce8e

    • SSDEEP

      49152:KnIe+SpGhXeru2WjHFRThYLm3GKZEtzis6jp2nARHfnTeOIU/I4DwOT/UW53r0pf:Ku7lEUvlIU/IsXT/v5IV

    Score
    10/10
    • Detects Latrodectus

      Detects Latrodectus v1.4.

    • Latrodectus family

    • Latrodectus loader

      Latrodectus is a loader written in C++.

    • Blocklisted process makes network request

MITRE ATT&CK Matrix

Tasks