Latrodectus Rapid Evolution Continues With Latest New Payload Features

216.73.216.6

Latrodectus Rapid Evolution Continues With Latest New Payload Features

· Published 30/08/2024 08:10 · Modified 30/08/2024 08:37

Essential information

Published: 30/08/2024 08:10
Modified: 30/08/2024 08:37
Tags: 2024-08-30 analysis evolution icedid latrodectus malware payload
Related entities: 10 observables, 9 techniques (mitre), 2 malware

Description

This report discusses the latest updates to the Latrodectus malware, including a different string deobfuscation approach, a new C2 endpoint, and two new backdoor commands. It provides an in-depth analysis of the new version 1.4, focusing on the new features added or updated in this variant. The report examines the obfuscation techniques used, the deobfuscation process, the C2 communication, and the new commands introduced.

External references

https://github.com/netskopeoss/NetskopeThreatLabsIOCs/tree/main/Malware/Latrodectus/IOCs
https://www.netskope.com/blog/latrodectus-rapid-evolution-continues-with-latest-new-payload-features
https://otx.alienvault.com/pulse/66d17e8db28855ad39a97792

Latrodectus Rapid Evolution Continues With Latest New Payload Features

Essential information

Description

Related entities

Observables (10)

Techniques (MITRE) (9)

Malware (2)

External references