General

  • Target

    1380-55-0x00000000003A0000-0x00000000003B7000-memory.dmp

  • Size

    92KB

  • Sample

    221207-dkpz9sab37

  • MD5

    fb88f8db99f3e168832216535cfb45bc

  • SHA1

    aa8e1fa625d5550b074abb38afbf4ea20627f5e2

  • SHA256

    e0769bd403c6d39808b1affe4cf1c81aa918be1a483d6d735a193ccc4ea06798

  • SHA512

    8550ed6adfdc8a39fc6b5e34b6dc09ea94a3ff8ce7a3e6befba8cc8bfc16b9c33b19304d775fff63bcb065b86b3458e7b0f4e36942119a69ba1d15a0d642a6d7

  • SSDEEP

    1536:e10FuM22CUWk/Y9kU40fRhB4z0S5kIacJdciCy4:AG0UWkf2Rh6IS5kI7JM

Score
10/10

Malware Config

Extracted

Family

emotet

Botnet

Epoch1

C2

110.36.234.146:80

191.82.16.60:80

91.83.93.105:8080

216.98.148.181:8080

68.183.190.199:8080

190.230.60.129:80

183.82.97.25:80

114.79.134.129:443

89.188.124.145:443

178.79.163.131:8080

76.69.29.42:80

87.106.77.40:7080

178.249.187.151:8080

62.75.143.100:7080

201.163.74.202:443

62.75.160.178:8080

181.188.149.134:80

186.0.95.172:80

217.199.160.224:8080

203.25.159.3:8080

rsa_pubkey.plain

Targets

    Tasks