General

  • Target

    2024-54-0x00000000002B0000-0x00000000002C4000-memory.dmp

  • Size

    80KB

  • Sample

    221207-b4ebrsdc66

  • MD5

    4dee756bbb0045924a47596913a15e24

  • SHA1

    01a9781ae4d9ac022affb27b158909f269017ba1

  • SHA256

    859e5ef4b926874b36647375bd0de9371bd3752472d519af86d72c24a34e0964

  • SHA512

    e217c239c94effaa48cda5465ffc893a5a846a65b8ca60311abd01d8960b67a9f308bd4ed38244be8535db0df7ff84516f61b0182986598795f5474fbbbd5cbb

  • SSDEEP

    1536:SQSG2w++P1pk9Oynk4XGlxquLxcrq7RT2re/PdbIZ45kL:9vh1pkDGlHxcG7F2rQT+

Score
10/10

Malware Config

Extracted

Family

emotet

Botnet

Epoch2

C2

186.75.241.230:80

181.143.194.138:443

181.143.53.227:21

85.104.59.244:20

80.11.163.139:443

167.71.10.37:8080

104.131.44.150:8080

185.187.198.15:80

133.167.80.63:7080

198.199.114.69:8080

144.139.247.220:80

152.89.236.214:8080

78.24.219.147:8080

92.222.216.44:8080

46.105.131.87:80

190.226.44.20:21

182.176.132.213:8090

85.54.169.141:8080

192.81.213.192:8080

101.187.237.217:20

rsa_pubkey.plain

Targets

    Tasks