emotet | 5eb04aa52a362039ab1dcaa0375179fb77accc4436b52d34098dc16f7ac20bbe | Triage

Sharing

General

Target

6b1a55d07f9da1278d95263da7379a04_JaffaCakes118
Size

207KB
Sample

240524-z5vl5sbf45
MD5

6b1a55d07f9da1278d95263da7379a04
SHA1

a8a3a79284d65470ec7551ced9f1efb2f12ede33
SHA256

5eb04aa52a362039ab1dcaa0375179fb77accc4436b52d34098dc16f7ac20bbe
SHA512

db89c98a7b8fbfbdf27ee2520595a257914e1a2ac4a2bcdbbb3ac54d13a52c9de3f216365a57202ec7453fea4b9954e95f94ce9d4dfb90eda19f1fd12fbe34c3
SSDEEP

3072:wtK8sN3+yM6f0tH5KWR8iIKyVppK3kQIzltJ0WZGvZxiCcWMKj1NPjeV:wo5MyStjRDybMkQAovZx+bG1Ng

Score

10^/10

emotet banker trojan

Malware Config

Targets

- Target
  
  6b1a55d07f9da1278d95263da7379a04_JaffaCakes118
- Size
  
  207KB
- MD5
  
  6b1a55d07f9da1278d95263da7379a04
- SHA1
  
  a8a3a79284d65470ec7551ced9f1efb2f12ede33
- SHA256
  
  5eb04aa52a362039ab1dcaa0375179fb77accc4436b52d34098dc16f7ac20bbe
- SHA512
  
  db89c98a7b8fbfbdf27ee2520595a257914e1a2ac4a2bcdbbb3ac54d13a52c9de3f216365a57202ec7453fea4b9954e95f94ce9d4dfb90eda19f1fd12fbe34c3
- SSDEEP
  
  3072:wtK8sN3+yM6f0tH5KWR8iIKyVppK3kQIzltJ0WZGvZxiCcWMKj1NPjeV:wo5MyStjRDybMkQAovZx+bG1Ng
Score

10^/10

emotet banker trojan
- Emotet
  Emotet is a trojan that is primarily spread through spam emails.
  trojan banker emotet
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

emotetbankertrojan

behavioral2

emotetbankertrojan