Latrodectus: The Wrath of Black Widow
Tags
cmtmf-attack-pattern: Masquerading
maec-delivery-vectors: Watering Hole
attack-pattern: Data Model Dns - T1071.004 Dns - T1590.002 Domains - T1583.001 Domains - T1584.001 Email Accounts - T1585.002 Email Accounts - T1586.002 Ip Addresses - T1590.005 Javascript - T1059.007 Malicious File - T1204.002 Malvertising - T1583.008 Malware - T1587.001 Malware - T1588.001 Masquerading - T1655 Msiexec - T1218.007 Phishing - T1660 Phishing - T1566 Powershell - T1059.001 Rundll32 - T1218.011 Seo Poisoning - T1608.006 Server - T1583.004 Server - T1584.004 Software - T1592.002 Tool - T1588.002 Connection Proxy - T1090 Masquerading - T1036 Powershell - T1086 Rundll32 - T1085 Masquerading
Show in Graph
Common Information
Type Value
UUID a04d2c92-b2f2-49f9-af18-ed1884449eb4
Fingerprint a460897929b70e21
Analysis status DONE
Considered CTI value 0
Text language
Published Oct. 22, 2024, 8 a.m.
Added to db Oct. 22, 2024, 10:54 a.m.
Last updated Nov. 17, 2024, 6:55 p.m.
Headline Latrodectus: The Wrath of Black Widow
Title Latrodectus: The Wrath of Black Widow
Detected Hints/Tags/Attributes 78/3/29
Source URLs
Redirection Url
Details Source https://malware.news/t/latrodectus-the-wrath-of-black-widow/87682
URL Provider
Details Provider Source level domain
Details malware.news malware.news
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 158 Malware Analysis, News and Indicators - Latest topics https://malware.news/latest.rss 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details Domain 3 
disk1.cab
Details File 11 
viewer.exe
Details File 3 
binary.ai
Details File 3 
custact.dll
Details File 3 
disk1.cab
Details File 4 
vierm_soft_x64.dll
Details File 2 
physxcooking64.dll
Details File 1018 
rundll32.exe
Details File 1260 
explorer.exe
Details File 269 
msiexec.exe
Details File 2 
epplib.dll
Details File 2 
nvcamera.dll
Details File 2 
model.dll
Details File 2 
trusfos.dll
Details File 2 
oemuninstall.dll
Details File 3 
eppcom64.dll
Details File 3 
nvxdsync.exe
Details File 2 
overseer.exe
Details File 2 
nvprxy.dll
Details File 376 
wscript.exe
Details File 155 
cscript.exe
Details File 2125 
cmd.exe
Details File 1208 
powershell.exe
Details IPv4 3 
7.1.0.0
Details IPv4 2 
2.5.4.62
Details IPv4 2 
4.0.0.38
Details IPv4 27 
192.168.1.5
Details IPv4 6 
80.78.24.30
Details IPv4 2 
82.115.223.39