emotet | 7b1980602de122dab23f96c1b3b37ca852ca500f0af6969e2803815445a16e82 | Triage

Sharing

General

Target

6d86ca86e3829dbd7b4e6ddd4952dda5_JaffaCakes118
Size

157KB
Sample

240524-gnk29sfg53
MD5

6d86ca86e3829dbd7b4e6ddd4952dda5
SHA1

2153e60444bb7b5b3438942c04654d1de6b0112c
SHA256

7b1980602de122dab23f96c1b3b37ca852ca500f0af6969e2803815445a16e82
SHA512

ce869c8e86c908f285c3f163bbd3921f18670be966b00fa40980ed30e0e892e492a9c9ab15d312ddf7a5d082b9e471481fa3b7b43ba2237ab9fba6309a9105a4
SSDEEP

3072:3aROF9HwBJa2vMjrmok3XxK6T9f5pNF/NB+GQIiqGgyVcU4TZP8e5:b9wBJa2EmvXxKy9FJjQIi1gyRA

Score

10^/10

emotet banker trojan

Malware Config

Targets

- Target
  
  6d86ca86e3829dbd7b4e6ddd4952dda5_JaffaCakes118
- Size
  
  157KB
- MD5
  
  6d86ca86e3829dbd7b4e6ddd4952dda5
- SHA1
  
  2153e60444bb7b5b3438942c04654d1de6b0112c
- SHA256
  
  7b1980602de122dab23f96c1b3b37ca852ca500f0af6969e2803815445a16e82
- SHA512
  
  ce869c8e86c908f285c3f163bbd3921f18670be966b00fa40980ed30e0e892e492a9c9ab15d312ddf7a5d082b9e471481fa3b7b43ba2237ab9fba6309a9105a4
- SSDEEP
  
  3072:3aROF9HwBJa2vMjrmok3XxK6T9f5pNF/NB+GQIiqGgyVcU4TZP8e5:b9wBJa2EmvXxKy9FJjQIi1gyRA
Score

10^/10

emotet banker trojan
- Emotet
  Emotet is a trojan that is primarily spread through spam emails.
  trojan banker emotet
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

emotetbankertrojan

behavioral2

emotetbankertrojan