General

  • Size

    532KB

  • Sample

    220514-sg2l8acgdp

  • MD5

    dd9345eb27f70592e324fa05e2b0c77c

  • SHA1

    32da549b966da329a43106fa3cbdc64ba376957f

  • SHA256

    3ebf4a590d63162883c7fb3b8ab890339cea65734ff6861b30a281720fa1351a

  • SHA512

    d82bc8be7a059e386f317a20a970f0b44039a868f7e0b4323a0bf539cb42eda0ece00d5afaa58312e9a64118ff02597b3e94395c68a7231ec61aa8c62b1e45c5

Malware Config

Targets

    • Target

      3ebf4a590d63162883c7fb3b8ab890339cea65734ff6861b30a281720fa1351a

    • Size

      532KB

    • MD5

      dd9345eb27f70592e324fa05e2b0c77c

    • SHA1

      32da549b966da329a43106fa3cbdc64ba376957f

    • SHA256

      3ebf4a590d63162883c7fb3b8ab890339cea65734ff6861b30a281720fa1351a

    • SHA512

      d82bc8be7a059e386f317a20a970f0b44039a868f7e0b4323a0bf539cb42eda0ece00d5afaa58312e9a64118ff02597b3e94395c68a7231ec61aa8c62b1e45c5

    • Emotet

      Emotet is a trojan that is primarily spread through spam emails.

    • suricata: ET MALWARE W32/Emotet CnC Beacon 3

      suricata: ET MALWARE W32/Emotet CnC Beacon 3

MITRE ATT&CK Matrix

Collection

    Command and Control

      Credential Access

        Defense Evasion

          Discovery

            Execution

              Exfiltration

                Impact

                  Initial Access

                    Lateral Movement

                      Persistence

                        Privilege Escalation