emotet

General

Target

0b52bae29a8a8b760424ad561d0170524ad4059b4a291e9a8dbd0c11e67f7fab
Size

336KB
Sample

201020-9pdz2kecb6
MD5

36ace6f1f7fdc267af756422535cd530
SHA1

9a0995003e948c9514fa6d150ced185c660b1249
SHA256

0b52bae29a8a8b760424ad561d0170524ad4059b4a291e9a8dbd0c11e67f7fab
SHA512

380a8ac74c0478d7d56435ed1dd7580f6475db70a45fd3bd07a753fb0b75a49351d1413156bac2bba0b9a5219d5421486e0388995b76696b635bd55d283db673

Score

10^/10

Malware Config

Extracted

Family

emotet

Botnet

Epoch1

C2

186.189.249.2:80

59.148.253.194:8080

173.212.197.71:8080

5.89.33.136:80

177.144.130.105:443

190.190.219.184:80

82.76.111.249:443

70.32.115.157:8080

62.84.75.50:80

190.24.243.186:80

51.15.7.145:80

24.232.228.233:80

46.105.114.137:8080

216.47.196.104:80

172.86.186.21:8080

186.103.141.250:443

128.92.203.42:80

190.188.245.242:80

152.169.22.67:80

170.81.48.2:80

rsa_pubkey.plain

Targets

- Target
  
  0b52bae29a8a8b760424ad561d0170524ad4059b4a291e9a8dbd0c11e67f7fab
- Size
  
  336KB
- MD5
  
  36ace6f1f7fdc267af756422535cd530
- SHA1
  
  9a0995003e948c9514fa6d150ced185c660b1249
- SHA256
  
  0b52bae29a8a8b760424ad561d0170524ad4059b4a291e9a8dbd0c11e67f7fab
- SHA512
  
  380a8ac74c0478d7d56435ed1dd7580f6475db70a45fd3bd07a753fb0b75a49351d1413156bac2bba0b9a5219d5421486e0388995b76696b635bd55d283db673
Score

10^/10

trojan banker emotet
- Emotet
  Emotet is a trojan that is primarily spread through spam emails.
  trojan banker emotet
- Emotet Payload
  Detects Emotet payload in memory.
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

Score

N/A

behavioral1

trojanbankeremotet

Score

10^/10

Sharing

General

Malware Config

Extracted

Targets

Emotet Payload

MITRE ATT&CK Matrix

Tasks

static1

behavioral1