emotet | b61aefafd7de699615bef5ebdcb9f02000ddf85734c30fa3d244a68c26630ca3

General

Target

b61aefafd7de699615bef5ebdcb9f02000ddf85734c30fa3d244a68c26630ca3
Size

126KB
MD5

9b51b98587a29d52d48e7b56486885da
SHA1

0f8af3cad15def3a6b3b6e2c645fc658c1922228
SHA256

b61aefafd7de699615bef5ebdcb9f02000ddf85734c30fa3d244a68c26630ca3
SHA512

c00b1ac2b42901bf6fe4ba9edd08f64822eae2cd43ee16d5eb622e7ee7b5e6a4107bb14fa07509275d91097579ed6c245ccf09e5842a7fab2831c01c3a55392a
SSDEEP

3072:RZyeV9biqga20jGN+ZHUJWL0arpof+z6TbG99vtA8YNL0bD:fNV8a5jGwZ0Ygarp++z6T09b3

Score

10^/10

emotet

Malware Config

Extracted

Family

emotet

C2

69.63.64.48:8080

51.91.142.26:443

131.100.24.199:4143

1.234.21.73:8080

167.172.248.70:8080

201.73.143.120:8080

144.91.80.228:8080

34.80.191.247:7080

144.91.92.120:8080

217.79.180.211:8080

146.59.151.250:443

162.243.103.246:8080

104.248.155.133:443

49.231.16.102:8080

164.68.102.31:8080

45.226.53.34:443

136.243.32.168:443

138.197.68.35:8080

104.236.40.81:443

165.227.166.238:8080

Signatures

Emotet family
emotet

Files

b61aefafd7de699615bef5ebdcb9f02000ddf85734c30fa3d244a68c26630ca3
.dll windows x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 120KB - Virtual size: 120KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 520B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Extracted

Signatures

Files

Headers

DLL Characteristics

File Characteristics

Sections

.text Size: 120KB - Virtual size: 120KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: - Virtual size: 520B

.pdata Size: 3KB - Virtual size: 2KB

.text
Size: 120KB - Virtual size: 120KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: - Virtual size: 520B

.pdata
Size: 3KB - Virtual size: 2KB