Analysis
-
max time kernel
103s -
max time network
145s -
platform
windows10-2004_x64 -
resource
win10v2004-20250502-en -
resource tags
arch:x64arch:x86image:win10v2004-20250502-enlocale:en-usos:windows10-2004-x64system -
submitted
15/05/2025, 17:47
Static task
static1
Behavioral task
behavioral1
Sample
TmOverlayIcon.dll
Resource
win10v2004-20250502-en
2 signatures
150 seconds
Behavioral task
behavioral2
Sample
TmOverlayIcon.dll
Resource
win11-20250508-en
2 signatures
150 seconds
General
-
Target
TmOverlayIcon.dll
-
Size
3.3MB
-
MD5
0a8d5bed05039881d52d9a5adfcfd476
-
SHA1
7c1a89c0dfde1519726b5be77325cb1e0f4742ce
-
SHA256
d761b0d6ab61f31eb2ab24a5cd6f0c939f28dffcb73c857016481263fb874ac6
-
SHA512
162a409557afb1af5f23f149520450ca59f0764a7b2be559202b5b6b2e440d6dfb73ca461b263134ce3ec79c615cb3422becf077fcb92097fe5869be2bfd4293
-
SSDEEP
49152:WIU6iTGtlqYfVwASO711w8ShREna6YbqKsf6qB+birSuho4fo+Acz+P+FuCk:x+gDKga6Jmbko64GF3k
Score
10/10
Malware Config
Extracted
Family
latrodectus
Version
1.4
C2
https://topguningit.com/test/
https://lofiramegi.com/test/
aes.hex
Signatures
-
Latrodectus family
-
Latrodectus loader
Latrodectus is a loader written in C++.