Overview

overview

10

Static

static

55646d034c...8b.exe

windows7-x64

10

55646d034c...8b.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    55646d034c47ddec8b91c0e0fc20d8a84e179f322ddcc947efd9d843700ae28b

  • Size

    207KB

  • Sample

    221125-ks9szaef63

  • MD5

    4a9eab928b94427188ef30782f14d181

  • SHA1

    08554b3ab7044a918e782f12a09b83970fe3d47e

  • SHA256

    55646d034c47ddec8b91c0e0fc20d8a84e179f322ddcc947efd9d843700ae28b

  • SHA512

    24e2aa30dacf9b5b07a9381cbaa79c35e8a0af15b380588ac073d5679b54a8b0d2b3a95949fcc2ecbe045e530cde846da88b600ba790dccb7aa6faaf2177f67b

  • SSDEEP

    3072:vtK8sN3+yM6f0tH5KWR8iIKyVppK3kQIzl6r0WZH0ZxiCcWMKj1NPjet:vo5MyStjRDybMkQTv0Zx+bG1Nw

Score
10/10
emotetbankertrojan

Malware Config

Targets

    • Target

      55646d034c47ddec8b91c0e0fc20d8a84e179f322ddcc947efd9d843700ae28b

    • Size

      207KB

    • MD5

      4a9eab928b94427188ef30782f14d181

    • SHA1

      08554b3ab7044a918e782f12a09b83970fe3d47e

    • SHA256

      55646d034c47ddec8b91c0e0fc20d8a84e179f322ddcc947efd9d843700ae28b

    • SHA512

      24e2aa30dacf9b5b07a9381cbaa79c35e8a0af15b380588ac073d5679b54a8b0d2b3a95949fcc2ecbe045e530cde846da88b600ba790dccb7aa6faaf2177f67b

    • SSDEEP

      3072:vtK8sN3+yM6f0tH5KWR8iIKyVppK3kQIzl6r0WZH0ZxiCcWMKj1NPjet:vo5MyStjRDybMkQTv0Zx+bG1Nw

    Score
    10/10
    emotetbankertrojan

    • Emotet

      Emotet is a trojan that is primarily spread through spam emails.

      trojanbankeremotet

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks