General

  • Target

    3a8a7e157a1e349e80ac58993267c571d8f1dfc5a61f576182bc30f22fba63df

  • Size

    184KB

  • Sample

    191217-v5tnfdfqm6

  • MD5

    8368c445db528e73d85ca335214097c3

  • SHA1

    514894f71e78449d1c9730a49ea027a601993865

  • SHA256

    3a8a7e157a1e349e80ac58993267c571d8f1dfc5a61f576182bc30f22fba63df

  • SHA512

    dbf082ac320f90a77d9ba3243a5e05a14f580273f0a8754876f41b7d29fb43800f54e2593852334c0b2db854ad82b416d93c84723b0422b81a04bb23b8c8398f

Malware Config

Extracted

Family

emotet

Botnet

Epoch1

C2

152.170.108.99:443

99.252.27.6:80

93.148.252.90:80

96.126.121.64:443

104.236.137.72:8080

85.234.143.94:8080

80.85.87.122:8080

2.139.158.136:443

80.11.158.65:8080

79.31.85.103:80

77.55.211.77:8080

96.61.113.203:80

181.198.203.45:443

142.93.114.137:8080

186.15.83.52:8080

181.36.42.205:443

68.183.190.199:8080

159.203.204.126:8080

50.28.51.143:8080

46.101.212.195:8080

rsa_pubkey.plain

Targets

    • Target

      3a8a7e157a1e349e80ac58993267c571d8f1dfc5a61f576182bc30f22fba63df

    • Size

      184KB

    • MD5

      8368c445db528e73d85ca335214097c3

    • SHA1

      514894f71e78449d1c9730a49ea027a601993865

    • SHA256

      3a8a7e157a1e349e80ac58993267c571d8f1dfc5a61f576182bc30f22fba63df

    • SHA512

      dbf082ac320f90a77d9ba3243a5e05a14f580273f0a8754876f41b7d29fb43800f54e2593852334c0b2db854ad82b416d93c84723b0422b81a04bb23b8c8398f

MITRE ATT&CK Enterprise v6

Tasks