Overview

overview

10

Static

static

82fa35d4f8...1a.exe

windows7-x64

5

82fa35d4f8...1a.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    82fa35d4f8552c453b7ae2603738478cc22a266e687e481d02473ace810c7e1a

  • Size

    208KB

  • Sample

    221026-254wxshghk

  • MD5

    5de4166dd94633f819bf4a453705dfe5

  • SHA1

    2bd5d96554da4d4c942be435e6df98143fd46c14

  • SHA256

    82fa35d4f8552c453b7ae2603738478cc22a266e687e481d02473ace810c7e1a

  • SHA512

    181c1aefbef49482644b71f3d8747bd1cb344c01924bab395d69d370adb834a014da03a95ab970dc79886ffa5e09dd6090cb6059f6a481090fb745d5ccd56807

  • SSDEEP

    3072:cU3vllYkVH+EaPT7rP2DbTz172nHQMT52Oop+/zEmwS:cw5cEarfPu52HRPj

Score
10/10
emotetbankertrojan

Malware Config

Targets

    • Target

      82fa35d4f8552c453b7ae2603738478cc22a266e687e481d02473ace810c7e1a

    • Size

      208KB

    • MD5

      5de4166dd94633f819bf4a453705dfe5

    • SHA1

      2bd5d96554da4d4c942be435e6df98143fd46c14

    • SHA256

      82fa35d4f8552c453b7ae2603738478cc22a266e687e481d02473ace810c7e1a

    • SHA512

      181c1aefbef49482644b71f3d8747bd1cb344c01924bab395d69d370adb834a014da03a95ab970dc79886ffa5e09dd6090cb6059f6a481090fb745d5ccd56807

    • SSDEEP

      3072:cU3vllYkVH+EaPT7rP2DbTz172nHQMT52Oop+/zEmwS:cw5cEarfPu52HRPj

    Score
    10/10
    emotetbankertrojan

    • Emotet

      Emotet is a trojan that is primarily spread through spam emails.

      trojanbankeremotet

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks