General

  • Target

    main_mips.elf

  • Size

    169KB

  • Sample

    250523-s9lrgafj9v

  • MD5

    208ac0496902e3ba05d48d9a825e6f02

  • SHA1

    a3e1d83cd900b8206f827aa823384ab83faf3856

  • SHA256

    535bc00ebb8ab24f29edcf82052af30a63dafd08b35bfa1e6ea57f5ae0281795

  • SHA512

    4a6c3e9fb3c75614eb420fd11d049b518d37f11a33d6f67435959aebf893a4c809252750c2e28b7fb913ee95a9f178b08a47c63bb9f8aca418f62f23c49a6015

  • SSDEEP

    3072:vg57xE7LHZwbq1ESBa3VCvrCsWrFesC3X:vglxE7LHZgh6C9FHC3X

Malware Config

Extracted

Family

latentbot

C2

iwishiamhappy.zapto.org

Targets

    • Target

      main_mips.elf

    • Size

      169KB

    • MD5

      208ac0496902e3ba05d48d9a825e6f02

    • SHA1

      a3e1d83cd900b8206f827aa823384ab83faf3856

    • SHA256

      535bc00ebb8ab24f29edcf82052af30a63dafd08b35bfa1e6ea57f5ae0281795

    • SHA512

      4a6c3e9fb3c75614eb420fd11d049b518d37f11a33d6f67435959aebf893a4c809252750c2e28b7fb913ee95a9f178b08a47c63bb9f8aca418f62f23c49a6015

    • SSDEEP

      3072:vg57xE7LHZwbq1ESBa3VCvrCsWrFesC3X:vglxE7LHZgh6C9FHC3X

    • LatentBot

      Modular trojan written in Delphi which has been in-the-wild since 2013.

    • Latentbot family

    • Deletes itself

    • Traces itself

      Traces itself to prevent debugging attempts

MITRE ATT&CK Enterprise v16

Tasks