Overview

overview

10

Static

static

957c137897...92.exe

windows7-x64

10

957c137897...92.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    957c137897960cb39605fee65c5edbd57c0f94ed39a77ae219abef1deef0d092

  • Size

    108KB

  • Sample

    220724-132s4saddp

  • MD5

    8f239042985d8da29817e59008e6a544

  • SHA1

    f2b0ce7f8898a0b564fb1e5931263324564d04b7

  • SHA256

    957c137897960cb39605fee65c5edbd57c0f94ed39a77ae219abef1deef0d092

  • SHA512

    a3f71811569e40bd165240a89d3f3f9b228dae59a0692629698110a6662fcc26a36cb47a5eb01fe651c54f6886214316d3a0c0d1ea30d7d5428c699ff84d92cb

Score
10/10
emotetbankersuricatatrojan

Malware Config

Targets

    • Target

      957c137897960cb39605fee65c5edbd57c0f94ed39a77ae219abef1deef0d092

    • Size

      108KB

    • MD5

      8f239042985d8da29817e59008e6a544

    • SHA1

      f2b0ce7f8898a0b564fb1e5931263324564d04b7

    • SHA256

      957c137897960cb39605fee65c5edbd57c0f94ed39a77ae219abef1deef0d092

    • SHA512

      a3f71811569e40bd165240a89d3f3f9b228dae59a0692629698110a6662fcc26a36cb47a5eb01fe651c54f6886214316d3a0c0d1ea30d7d5428c699ff84d92cb

    Score
    10/10
    emotetbankersuricatatrojan

    • Emotet

      Emotet is a trojan that is primarily spread through spam emails.

      trojanbankeremotet

    • suricata: ET MALWARE Win32/Emotet CnC Activity (POST) M2

      suricata: ET MALWARE Win32/Emotet CnC Activity (POST) M2

      suricata

    • suricata: ET MALWARE Win32/Emotet CnC Activity (POST) M3

      suricata: ET MALWARE Win32/Emotet CnC Activity (POST) M3

      suricata

    • suricata: ET MALWARE Win32/Emotet CnC Activity (POST) M4

      suricata: ET MALWARE Win32/Emotet CnC Activity (POST) M4

      suricata

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks