emotet | 0464fa8fe7aa6b99c4c5891ee2d130f7419470e5ab6103ebb6217d7abe0f94e8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0464fa8fe7aa6b99c4c5891ee2d130f7419470e5ab6103ebb6217d7abe0f94e8
Size

136KB
MD5

019a3e86e53106df88cd301370844bbb
SHA1

7e952b37b125db54eca6754073204cb02bd1e87c
SHA256

0464fa8fe7aa6b99c4c5891ee2d130f7419470e5ab6103ebb6217d7abe0f94e8
SHA512

a00347f8f0c0c0087f719ae1644f9c4de849a8e57745f09bc90a8fbc7f930a5f0ba1fe57a23e941e12eb0342c2a96adac82ece4c9952073538a6dc123af23efc
SSDEEP

3072:xcRne2+jLPU6mseI7XSkZzF/JDterc1vQ95yHBaUBMV9:xgnEj3eqdJ1sY1v3A

Score

10^/10

emotet

Malware Config

Signatures

Emotet family
emotet

Files

0464fa8fe7aa6b99c4c5891ee2d130f7419470e5ab6103ebb6217d7abe0f94e8
.dll windows x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 130KB - Virtual size: 129KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 1008B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ