emotet | a3f8f0f0229d7c0907a6e4c47a9f4b47ef3d9d1097a71796cbb6517ede83b4d2 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

3

2434e74a5a...18.exe

windows7-x64

2434e74a5a...18.exe

windows10-2004-x64

Sharing

General

Target

2434e74a5adcf1530d186b9e014db3e3_JaffaCakes118
Size

196KB
Sample

240508-ldqbfsde9t
MD5

2434e74a5adcf1530d186b9e014db3e3
SHA1

76593f8cda816b7d4671a19c8de10c81a1fcf6f5
SHA256

a3f8f0f0229d7c0907a6e4c47a9f4b47ef3d9d1097a71796cbb6517ede83b4d2
SHA512

92cae0c934e45655fc24b2f8de777fae3d05bccf38cd950b664b380f9c48d71264431ce45bc0a57c852d77d1d20b31e5ca834d61047dc334606a93f72b186e93
SSDEEP

3072:fAvd9J7NZ3zANXgmIAjzp8CKi/nRkkBpuEPFCh0/p/nRCWY86bIWLu4Nrme/1Zm:fAbJ7ANXdIAjDd/7pzP0

Score

10^/10

emotet banker trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

2434e74a5adcf1530d186b9e014db3e3_JaffaCakes118.exe

Resource

win7-20240419-en

emotet banker trojan

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

2434e74a5adcf1530d186b9e014db3e3_JaffaCakes118.exe

Resource

win10v2004-20240419-en

emotet banker trojan

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  2434e74a5adcf1530d186b9e014db3e3_JaffaCakes118
- Size
  
  196KB
- MD5
  
  2434e74a5adcf1530d186b9e014db3e3
- SHA1
  
  76593f8cda816b7d4671a19c8de10c81a1fcf6f5
- SHA256
  
  a3f8f0f0229d7c0907a6e4c47a9f4b47ef3d9d1097a71796cbb6517ede83b4d2
- SHA512
  
  92cae0c934e45655fc24b2f8de777fae3d05bccf38cd950b664b380f9c48d71264431ce45bc0a57c852d77d1d20b31e5ca834d61047dc334606a93f72b186e93
- SSDEEP
  
  3072:fAvd9J7NZ3zANXgmIAjzp8CKi/nRkkBpuEPFCh0/p/nRCWY86bIWLu4Nrme/1Zm:fAbJ7ANXdIAjDd/7pzP0
Score

10^/10

emotet banker trojan
- Emotet
  Emotet is a trojan that is primarily spread through spam emails.
  trojan banker emotet
- Unexpected DNS network traffic destination
  Network traffic to other servers than the configured DNS servers was detected on the DNS port.
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

emotetbankertrojan

behavioral2

emotetbankertrojan

© 2018-2025

Terms | Privacy