emotet

General

Target

0c57b50b749dc7961e83ba3cb5e5f3e7f754cdfeb2cb90f6fb3b531a336cabaa.exe
Size

675KB
Sample

230120-hyd75saa56
MD5

f06a064e53c8e31723f060836a31cf49
SHA1

ab1896fe1f93796092623c8959e6a5e481a3c30e
SHA256

0c57b50b749dc7961e83ba3cb5e5f3e7f754cdfeb2cb90f6fb3b531a336cabaa
SHA512

c4497891409b893fe8b119e77b623d79a02cc792ccab92fb5c54865a162f7422ca814992c42d034e15ff62824a9ac5bf95bcde96e1284fc28a622752f73e7d40
SSDEEP

12288:pBBKShhc/bQisqkxf3CJS+HQ58B6loNJYlvw9zaaxRHdAsxuv/3a1gYao3ovJK6S:bBHlvw9GanHro/3hoW

Score

10^/10

Malware Config

Extracted

Family

emotet

Botnet

Epoch5

C2

104.248.225.227:8080

62.171.178.147:8080

165.22.254.236:8080

128.199.242.164:8080

188.165.79.151:443

202.29.239.162:443

37.187.114.15:8080

175.126.176.79:8080

103.56.149.105:8080

103.126.216.86:443

188.225.32.231:4143

43.129.209.178:443

93.104.209.107:8080

118.98.72.86:443

78.47.204.80:443

128.199.217.206:443

157.230.99.206:8080

87.106.97.83:7080

83.229.80.93:8080

88.217.172.165:8080

eck1.plain

ecs1.plain

Targets

- Target
  
  0c57b50b749dc7961e83ba3cb5e5f3e7f754cdfeb2cb90f6fb3b531a336cabaa.exe
- Size
  
  675KB
- MD5
  
  f06a064e53c8e31723f060836a31cf49
- SHA1
  
  ab1896fe1f93796092623c8959e6a5e481a3c30e
- SHA256
  
  0c57b50b749dc7961e83ba3cb5e5f3e7f754cdfeb2cb90f6fb3b531a336cabaa
- SHA512
  
  c4497891409b893fe8b119e77b623d79a02cc792ccab92fb5c54865a162f7422ca814992c42d034e15ff62824a9ac5bf95bcde96e1284fc28a622752f73e7d40
- SSDEEP
  
  12288:pBBKShhc/bQisqkxf3CJS+HQ58B6loNJYlvw9zaaxRHdAsxuv/3a1gYao3ovJK6S:bBHlvw9GanHro/3hoW
Score

10^/10

emotet epoch5 banker trojan
- Emotet
  Emotet is a trojan that is primarily spread through spam emails.
  trojan banker emotet
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

Score

N/A

behavioral1

emotetepoch5bankertrojan

Score

10^/10

Sharing

General

Malware Config

Extracted

Targets

MITRE ATT&CK Matrix

Tasks

static1

behavioral1