emotet | 6c0a31b06c2aaf65bb7805638c82b77c0705c28be7596a7efd6a6d1e8fc32683 | Triage

Sharing

General

Target

da02ed3a1e946818225e9f860f1518a5_JaffaCakes118
Size

206KB
Sample

240911-kzc3ksshrh
MD5

da02ed3a1e946818225e9f860f1518a5
SHA1

bc0668e8b648d01a77279156cec824084d9f6a87
SHA256

6c0a31b06c2aaf65bb7805638c82b77c0705c28be7596a7efd6a6d1e8fc32683
SHA512

ec4a1d7a33a3c63c516a3969532bb25c36a951b9e0655704fb4c63ddd8687431afa4f54f9580c99740e047813e87d68493817f5758d9bfa16aafe4b2f41391b3
SSDEEP

3072:YtK8sN3+yM6f0tH5KWR8iIKyVppK3kQIzcBi0Wf6XZxiCcWMKj1NPje/:Yo5MyStjRDybMkQxlXZx+bG1Na

Score

10^/10

emotet banker discovery trojan

Malware Config

Targets

- Target
  
  da02ed3a1e946818225e9f860f1518a5_JaffaCakes118
- Size
  
  206KB
- MD5
  
  da02ed3a1e946818225e9f860f1518a5
- SHA1
  
  bc0668e8b648d01a77279156cec824084d9f6a87
- SHA256
  
  6c0a31b06c2aaf65bb7805638c82b77c0705c28be7596a7efd6a6d1e8fc32683
- SHA512
  
  ec4a1d7a33a3c63c516a3969532bb25c36a951b9e0655704fb4c63ddd8687431afa4f54f9580c99740e047813e87d68493817f5758d9bfa16aafe4b2f41391b3
- SSDEEP
  
  3072:YtK8sN3+yM6f0tH5KWR8iIKyVppK3kQIzcBi0Wf6XZxiCcWMKj1NPje/:Yo5MyStjRDybMkQxlXZx+bG1Na
Score

10^/10

emotet banker discovery trojan
- Emotet
  Emotet is a trojan that is primarily spread through spam emails.
  trojan banker emotet
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

emotetbankerdiscoverytrojan

behavioral2

emotetbankerdiscoverytrojan