emotet | 01034672f6dd779ef2c7a6f26bb815c64666d8036eb5ed7eac52dbbd6afd9771 | Triage

Sharing

General

Target

626e600948b08041891ee1a380263d21_JaffaCakes118
Size

112KB
Sample

240521-hvbb3scd41
MD5

626e600948b08041891ee1a380263d21
SHA1

8acd56c7fc3f5992cc498e0b71c798c1c2813038
SHA256

01034672f6dd779ef2c7a6f26bb815c64666d8036eb5ed7eac52dbbd6afd9771
SHA512

fe490888edd3587bb9d19c7b5603ce49dde5400af636b41f393be2e1c9923f4028614972c31682b6c9ce783cada7f7fe085189f77ae9dceb19c81c86477bc636
SSDEEP

3072:5vDCGjODCKxSLKox1Xen3M0S58RXd8fym:5tjO+KxSzTu3lVQ

Score

10^/10

emotet banker trojan

Malware Config

Targets

- Target
  
  626e600948b08041891ee1a380263d21_JaffaCakes118
- Size
  
  112KB
- MD5
  
  626e600948b08041891ee1a380263d21
- SHA1
  
  8acd56c7fc3f5992cc498e0b71c798c1c2813038
- SHA256
  
  01034672f6dd779ef2c7a6f26bb815c64666d8036eb5ed7eac52dbbd6afd9771
- SHA512
  
  fe490888edd3587bb9d19c7b5603ce49dde5400af636b41f393be2e1c9923f4028614972c31682b6c9ce783cada7f7fe085189f77ae9dceb19c81c86477bc636
- SSDEEP
  
  3072:5vDCGjODCKxSLKox1Xen3M0S58RXd8fym:5tjO+KxSzTu3lVQ
Score

10^/10

emotet banker trojan
- Emotet
  Emotet is a trojan that is primarily spread through spam emails.
  trojan banker emotet
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

emotetbankertrojan

behavioral2

emotetbankertrojan