emotet | 92344db7fa6f0f2092f9d763387cd59d1b14852189e4694f57a10fd5d1cdf221 | Triage

Sharing

General

Target

1f662d90ccea9f3ce9ea62a1e85f4dd8_JaffaCakes118
Size

123KB
Sample

240507-epq9kacb35
MD5

1f662d90ccea9f3ce9ea62a1e85f4dd8
SHA1

1f1668ba8d9981c8829d214f8b7e674a589cb66c
SHA256

92344db7fa6f0f2092f9d763387cd59d1b14852189e4694f57a10fd5d1cdf221
SHA512

5361065adeed405737511afd7770c1c45dcafd3a93980494ec51df16f19e23d160e9aa4367a4450104b8a04cf1a67f505dd86824025658d8bfe8092f05825fe6
SSDEEP

3072:7uOLkYn00IJlBz0odOOAxapGNUmyT0A5p3GqQHDr5wdX:7u2kYn0jBrBA5NV+0ZHyx

Score

10^/10

emotet banker trojan

Malware Config

Targets

- Target
  
  1f662d90ccea9f3ce9ea62a1e85f4dd8_JaffaCakes118
- Size
  
  123KB
- MD5
  
  1f662d90ccea9f3ce9ea62a1e85f4dd8
- SHA1
  
  1f1668ba8d9981c8829d214f8b7e674a589cb66c
- SHA256
  
  92344db7fa6f0f2092f9d763387cd59d1b14852189e4694f57a10fd5d1cdf221
- SHA512
  
  5361065adeed405737511afd7770c1c45dcafd3a93980494ec51df16f19e23d160e9aa4367a4450104b8a04cf1a67f505dd86824025658d8bfe8092f05825fe6
- SSDEEP
  
  3072:7uOLkYn00IJlBz0odOOAxapGNUmyT0A5p3GqQHDr5wdX:7u2kYn0jBrBA5NV+0ZHyx
Score

10^/10

emotet banker trojan
- Emotet
  Emotet is a trojan that is primarily spread through spam emails.
  trojan banker emotet
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

emotetbankertrojan

behavioral2

emotetbankertrojan