emotet

General

Target

24db1bbf8ede7b5946489b5993bbc2560aae74a8c9aff72fade8eb25e508556a
Size

64KB
Sample

200728-fsze6teqc2
MD5

6637441151e7db894f0e76de28d56050
SHA1

991283866f6164a6db6f80a5be61c7ae731c38af
SHA256

24db1bbf8ede7b5946489b5993bbc2560aae74a8c9aff72fade8eb25e508556a
SHA512

3c53fd72b3ff1e6cf853e7bda44eaa45b448ab952cd3163fe1eb9cb0e3080344f7fda7049b9c059d394ef9c945ac06df89e075108a8f40aa69c487ccc97ad8d6

Score

10^/10

Malware Config

Extracted

Family

emotet

Botnet

Epoch2

C2

76.27.179.47:80

212.51.142.238:8080

189.212.199.126:443

61.19.246.238:443

162.154.38.103:80

91.211.88.52:7080

83.110.223.58:443

124.45.106.173:443

116.203.32.252:8080

109.117.53.230:443

5.196.74.210:8080

75.139.38.211:80

168.235.67.138:7080

176.111.60.55:8080

169.239.182.217:8080

74.208.45.104:8080

31.31.77.83:443

222.214.218.37:4143

37.139.21.175:8080

91.205.215.66:443

rsa_pubkey.plain

Targets

- Target
  
  24db1bbf8ede7b5946489b5993bbc2560aae74a8c9aff72fade8eb25e508556a
- Size
  
  64KB
- MD5
  
  6637441151e7db894f0e76de28d56050
- SHA1
  
  991283866f6164a6db6f80a5be61c7ae731c38af
- SHA256
  
  24db1bbf8ede7b5946489b5993bbc2560aae74a8c9aff72fade8eb25e508556a
- SHA512
  
  3c53fd72b3ff1e6cf853e7bda44eaa45b448ab952cd3163fe1eb9cb0e3080344f7fda7049b9c059d394ef9c945ac06df89e075108a8f40aa69c487ccc97ad8d6
Score

10^/10

trojan banker emotet
- Emotet
  Emotet is a trojan that is primarily spread through spam emails.
  trojan banker emotet
- Emotet Payload
  Detects Emotet payload in memory.
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

Score

N/A

behavioral1

trojanbankeremotet

Score

10^/10

Sharing

General

Malware Config

Extracted

Targets

Emotet Payload

MITRE ATT&CK Matrix

Tasks

static1

behavioral1