emotet

General

Target

051a16da3be3682d499ba9ad9c74b94b8bffc8eb7a21faf10b01cbc29674a563
Size

528KB
Sample

240202-jy18cahcc7
MD5

9bc558812ef37bfdd9cdb70fabde880b
SHA1

40d86e54de78fdfd4ed0bcb603e0ae867680c9f9
SHA256

051a16da3be3682d499ba9ad9c74b94b8bffc8eb7a21faf10b01cbc29674a563
SHA512

f073ad837c0add723a736191ca4056010b269737583f7d6e9ea9035de82f5a9a61d938293d4d9dc12e85ff4736b639a16f29739dead0b4226e66eefc10ad4f7e
SSDEEP

6144:NEHZqt2fGTf17ZWi4QWVhvqlEvQPJuSReK/0D0kGsoanL/whFTSQFZ9xU:C0AGj17ZWi4QWzdDIsogYLTtE

Score

10^/10

Malware Config

Extracted

Family

emotet

Botnet

Epoch5

C2

5.189.160.61:443

94.177.178.26:8080

202.29.239.162:443

54.38.143.246:7080

119.59.125.140:8080

185.148.168.15:8080

188.166.229.148:443

2.58.16.87:8080

104.131.62.48:8080

103.82.248.59:7080

37.59.209.141:8080

103.133.214.242:8080

195.77.239.39:8080

128.199.192.135:8080

78.47.204.80:443

59.148.253.194:443

87.106.97.83:7080

45.71.195.104:8080

85.214.67.203:8080

139.196.72.155:8080

eck1.plain

ecs1.plain

Targets

- Target
  
  051a16da3be3682d499ba9ad9c74b94b8bffc8eb7a21faf10b01cbc29674a563
- Size
  
  528KB
- MD5
  
  9bc558812ef37bfdd9cdb70fabde880b
- SHA1
  
  40d86e54de78fdfd4ed0bcb603e0ae867680c9f9
- SHA256
  
  051a16da3be3682d499ba9ad9c74b94b8bffc8eb7a21faf10b01cbc29674a563
- SHA512
  
  f073ad837c0add723a736191ca4056010b269737583f7d6e9ea9035de82f5a9a61d938293d4d9dc12e85ff4736b639a16f29739dead0b4226e66eefc10ad4f7e
- SSDEEP
  
  6144:NEHZqt2fGTf17ZWi4QWVhvqlEvQPJuSReK/0D0kGsoanL/whFTSQFZ9xU:C0AGj17ZWi4QWzdDIsogYLTtE
Score

10^/10

emotet epoch5 banker trojan
- Emotet
  Emotet is a trojan that is primarily spread through spam emails.
  trojan banker emotet
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

Score

3^/10

behavioral1

emotetepoch5bankertrojan

Score

10^/10

Sharing

General

Malware Config

Extracted

Targets

MITRE ATT&CK Matrix

Tasks

static1

behavioral1