emotet | da3ab0898c1a87a640f877df696a4e241e0f4139a3e0276a328ceeba2cb06cb8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

da3ab0898c1a87a640f877df696a4e241e0f4139a3e0276a328ceeba2cb06cb8
Size

136KB
MD5

6c2e6284c8f54c1e081baae4e38311de
SHA1

abb43a8ffe1f7ac2af6eb31d25acd35483edb560
SHA256

da3ab0898c1a87a640f877df696a4e241e0f4139a3e0276a328ceeba2cb06cb8
SHA512

b4a537bc62304421c1de8797c0a9edda7a1d07e8e7a3c1edff5a7b70ab64a09b30b570b724525a597cf5da9318de03e4376e82711030ddcbede4db8effe58346
SSDEEP

3072:xARnqqL0LBU6mSL7XSkx6bTJmSeL91PQaUci3cV69J9:x0n/0bHAngxh1PgM

Score

10^/10

emotet

Malware Config

Signatures

Emotet family
emotet

Files

da3ab0898c1a87a640f877df696a4e241e0f4139a3e0276a328ceeba2cb06cb8
.dll windows x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 130KB - Virtual size: 129KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 1008B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ