emotet | 57fbd896d702c4b775bacd9aa8462beff18811da477780ed225cb8b35d7d8f6f | Triage

Submit
Reports

Overview

overview

Static

static

3

58ea681bf4...18.exe

windows7-x64

58ea681bf4...18.exe

windows10-2004-x64

Sharing

General

Target

58ea681bf441cb9ff0c32a701f8e64f6_JaffaCakes118
Size

148KB
Sample

240519-gtk98adg4x
MD5

58ea681bf441cb9ff0c32a701f8e64f6
SHA1

b2361b37f5c57eba2cea679d2b567ea4aad68271
SHA256

57fbd896d702c4b775bacd9aa8462beff18811da477780ed225cb8b35d7d8f6f
SHA512

a2584b42a8d85270ada8ea8da0c0d08964a1c7629260546fba1dc43a83d7889b09ef8b421880a5bb4cc3e21207d88b280f0235cdeaa1b4b9aefdf1b963fd666a
SSDEEP

3072:LChUtTp16NBrrQHWELHM5r18pbKTt7zklur2sHLPgOF+4C:2CtKBo2Hh18p2x7oVsHL

Score

10^/10

emotet banker trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

58ea681bf441cb9ff0c32a701f8e64f6_JaffaCakes118.exe

Resource

win7-20240508-en

emotet banker trojan

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

58ea681bf441cb9ff0c32a701f8e64f6_JaffaCakes118.exe

Resource

win10v2004-20240426-en

emotet banker trojan

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  58ea681bf441cb9ff0c32a701f8e64f6_JaffaCakes118
- Size
  
  148KB
- MD5
  
  58ea681bf441cb9ff0c32a701f8e64f6
- SHA1
  
  b2361b37f5c57eba2cea679d2b567ea4aad68271
- SHA256
  
  57fbd896d702c4b775bacd9aa8462beff18811da477780ed225cb8b35d7d8f6f
- SHA512
  
  a2584b42a8d85270ada8ea8da0c0d08964a1c7629260546fba1dc43a83d7889b09ef8b421880a5bb4cc3e21207d88b280f0235cdeaa1b4b9aefdf1b963fd666a
- SSDEEP
  
  3072:LChUtTp16NBrrQHWELHM5r18pbKTt7zklur2sHLPgOF+4C:2CtKBo2Hh18p2x7oVsHL
Score

10^/10

emotet banker trojan
- Emotet
  Emotet is a trojan that is primarily spread through spam emails.
  trojan banker emotet
- Unexpected DNS network traffic destination
  Network traffic to other servers than the configured DNS servers was detected on the DNS port.
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

emotetbankertrojan

behavioral2

emotetbankertrojan

© 2018-2024

Terms | Privacy