emotet | feea58f730e1d729b575b20432fedb4f6ec61fd59047f035bc845d9c68aad1b4 | Triage

Sharing

General

Target

72145f3c67807fe0b5eb084aef34f4a3_JaffaCakes118
Size

214KB
Sample

240525-qh9m4sdg8x
MD5

72145f3c67807fe0b5eb084aef34f4a3
SHA1

a8fee8c2d809392bee29a11f006b1ad6fecf35a3
SHA256

feea58f730e1d729b575b20432fedb4f6ec61fd59047f035bc845d9c68aad1b4
SHA512

acd16750d9773f48b95ba9424ab020a0c5e0ec9f7dd749f9b63e15c47f5ba07dfb5efa0b1351ded42ed425e585821faaee086736aee9788a0af5aee1036ac85f
SSDEEP

3072:OF/75xOCTwWW0dHyvZBLwmce4K8OqAwcvTcEfHSqP5sm1YW5noH3lfkT60:h5bc/K8OZJvTcEfya5sm1YEo1fkTL

Score

10^/10

emotet banker trojan

Malware Config

Targets

- Target
  
  72145f3c67807fe0b5eb084aef34f4a3_JaffaCakes118
- Size
  
  214KB
- MD5
  
  72145f3c67807fe0b5eb084aef34f4a3
- SHA1
  
  a8fee8c2d809392bee29a11f006b1ad6fecf35a3
- SHA256
  
  feea58f730e1d729b575b20432fedb4f6ec61fd59047f035bc845d9c68aad1b4
- SHA512
  
  acd16750d9773f48b95ba9424ab020a0c5e0ec9f7dd749f9b63e15c47f5ba07dfb5efa0b1351ded42ed425e585821faaee086736aee9788a0af5aee1036ac85f
- SSDEEP
  
  3072:OF/75xOCTwWW0dHyvZBLwmce4K8OqAwcvTcEfHSqP5sm1YW5noH3lfkT60:h5bc/K8OZJvTcEfya5sm1YEo1fkTL
Score

10^/10

emotet banker trojan
- Emotet
  Emotet is a trojan that is primarily spread through spam emails.
  trojan banker emotet
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

emotetbankertrojan

behavioral2

emotetbankertrojan