Overview

overview

10

Static

static

4b4413f6d7...6a.exe

windows7-x64

10

4b4413f6d7...6a.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    4b4413f6d7bdb32703173800f023687fca686e6a.exe

  • Size

    113KB

  • Sample

    221130-k2q28afc86

  • MD5

    4e431197b0ec80f9d1feaa4287513d80

  • SHA1

    4b4413f6d7bdb32703173800f023687fca686e6a

  • SHA256

    212e451f8d47c3b1df3364edb01d7cb4b6d6de811a92d038701ccbdc8581f017

  • SHA512

    00545fba5948c9e6f38a278180e06b8c35cc91c2fe9f14dcf346ee83ade126b097ff01486f9f45e1142e1ec83d7492dc36b3d559641ff38984bd26070cf09f05

  • SSDEEP

    3072:NdXoH140klX/1SvgDJ6gwBq1Dp1xzxfU8R4gy:XYH140ko6JvwA1DpDP4L

Score
10/10
emotetbankertrojan

Malware Config

Targets

    • Target

      4b4413f6d7bdb32703173800f023687fca686e6a.exe

    • Size

      113KB

    • MD5

      4e431197b0ec80f9d1feaa4287513d80

    • SHA1

      4b4413f6d7bdb32703173800f023687fca686e6a

    • SHA256

      212e451f8d47c3b1df3364edb01d7cb4b6d6de811a92d038701ccbdc8581f017

    • SHA512

      00545fba5948c9e6f38a278180e06b8c35cc91c2fe9f14dcf346ee83ade126b097ff01486f9f45e1142e1ec83d7492dc36b3d559641ff38984bd26070cf09f05

    • SSDEEP

      3072:NdXoH140klX/1SvgDJ6gwBq1Dp1xzxfU8R4gy:XYH140ko6JvwA1DpDP4L

    Score
    10/10
    emotetbankertrojan

    • Emotet

      Emotet is a trojan that is primarily spread through spam emails.

      trojanbankeremotet

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks