emotet

General

Target

emotet_exe_e5_0e97059a25d9b4e7835814386627e8570074969e81058690204c2550faf32972_2021-12-17__181241.exe
Size

653KB
Sample

211217-wtql9seac8
MD5

7ffc8b580689321818b47c53a3faefcc
SHA1

ea57ba3db0f0c774e6acb6e25a72dfdda5ec2607
SHA256

26099e7fa189669812ed5117ae4f85463505e563eeece64c085bb8d0ff01ea65
SHA512

f205a54ee6f94fddf22786056e2372f4878c8cbd5b3917649303a0c7024a7d347263b9c0635c67baccb2fe79431365fc6bcbc3cc9727252ce06011b7ff6d17d4

Score

10^/10

Malware Config

Extracted

Family

emotet

Botnet

Epoch5

C2

51.178.61.60:443

168.197.250.14:80

45.79.33.48:8080

196.44.98.190:8080

177.72.80.14:7080

51.210.242.234:8080

185.148.169.10:8080

142.4.219.173:8080

78.47.204.80:443

78.46.73.125:443

37.44.244.177:8080

37.59.209.141:8080

191.252.103.16:80

54.38.242.185:443

85.214.67.203:8080

54.37.228.122:443

207.148.81.119:8080

195.77.239.39:8080

66.42.57.149:443

195.154.146.35:443

eck1.plain

ecs1.plain

Targets

- Target
  
  emotet_exe_e5_0e97059a25d9b4e7835814386627e8570074969e81058690204c2550faf32972_2021-12-17__181241.exe
- Size
  
  653KB
- MD5
  
  7ffc8b580689321818b47c53a3faefcc
- SHA1
  
  ea57ba3db0f0c774e6acb6e25a72dfdda5ec2607
- SHA256
  
  26099e7fa189669812ed5117ae4f85463505e563eeece64c085bb8d0ff01ea65
- SHA512
  
  f205a54ee6f94fddf22786056e2372f4878c8cbd5b3917649303a0c7024a7d347263b9c0635c67baccb2fe79431365fc6bcbc3cc9727252ce06011b7ff6d17d4
Score

10^/10

emotet epoch5 banker trojan
- Emotet
  Emotet is a trojan that is primarily spread through spam emails.
  trojan banker emotet
- Blocklisted process makes network request
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

Sharing

General

Malware Config

Extracted

Targets

Blocklisted process makes network request

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2