emotet | 6485afc7731c2dda188cac1af042f289dfa03d78fd0dac1058e8d04363de901d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6485afc7731c2dda188cac1af042f289dfa03d78fd0dac1058e8d04363de901d
Size

134KB
MD5

34ea29605f588a6dcb3ef5a6e350a014
SHA1

c7f39c6153f1549cc20c3d6142760326eccc46eb
SHA256

6485afc7731c2dda188cac1af042f289dfa03d78fd0dac1058e8d04363de901d
SHA512

ea1a9a02c99c8fffa98d7cf1ed55a623f6c1473e5cc1b275eadd9440f43f2e7d930a1c3da6f643e2d1ce2ac0afa92af1075c0b164f1575bd06bd8c5c3c697423
SSDEEP

3072:Fj8Y6nPecrc0JV/YnkqwqlTYKmE+r8aFW6ulezVErPN:yZPejgVQnkqwqlTJStFNceh4

Score

10^/10

emotet

Malware Config

Signatures

Emotet family
emotet

Files

6485afc7731c2dda188cac1af042f289dfa03d78fd0dac1058e8d04363de901d
.dll windows x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 128KB - Virtual size: 128KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 1016B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ