emotet | 21355753a277813cf58a348e389fa4feebca3f819ba7c78a8ab679a4f63d1953 | Triage

Sharing

General

Target

465c7fb95c45008ddc6b940624745430_JaffaCakes118
Size

120KB
Sample

240515-qlgrhabc2v
MD5

465c7fb95c45008ddc6b940624745430
SHA1

c5cb7ac12964118a02bf42081948f7b337596caf
SHA256

21355753a277813cf58a348e389fa4feebca3f819ba7c78a8ab679a4f63d1953
SHA512

47da7a30600b53ec7f769280e62b108d5b36bc8d8fa3323ebac17456707cd141b031ae97ff66cf74637da9ff1683b7b14d0f2b7a978cece6d82f8e85f90b688f
SSDEEP

1536:iE+/4PkghqS5MVkW31G8KaEaoiXzCll4xArk/HvqbzFerKdNhaaXXr:iE+/4sxVz3EaoiDQ4CtFN/hXr

Score

10^/10

emotet banker trojan

Malware Config

Targets

- Target
  
  465c7fb95c45008ddc6b940624745430_JaffaCakes118
- Size
  
  120KB
- MD5
  
  465c7fb95c45008ddc6b940624745430
- SHA1
  
  c5cb7ac12964118a02bf42081948f7b337596caf
- SHA256
  
  21355753a277813cf58a348e389fa4feebca3f819ba7c78a8ab679a4f63d1953
- SHA512
  
  47da7a30600b53ec7f769280e62b108d5b36bc8d8fa3323ebac17456707cd141b031ae97ff66cf74637da9ff1683b7b14d0f2b7a978cece6d82f8e85f90b688f
- SSDEEP
  
  1536:iE+/4PkghqS5MVkW31G8KaEaoiXzCll4xArk/HvqbzFerKdNhaaXXr:iE+/4sxVz3EaoiDQ4CtFN/hXr
Score

10^/10

emotet banker trojan
- Emotet
  Emotet is a trojan that is primarily spread through spam emails.
  trojan banker emotet
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

emotetbankertrojan

behavioral2

emotetbankertrojan