emotet | 7b5c6edff47525ed0f9c24a55fd12504c805bc2068f8673e877a512bfb1f10f3 | Triage

Sharing

General

Target

dbebbd9713c4c448a1445025252b19b4_JaffaCakes118
Size

166KB
Sample

240912-ggmbratglf
MD5

dbebbd9713c4c448a1445025252b19b4
SHA1

e4f399af55596db10da94d6ae10e1bf7d74db187
SHA256

7b5c6edff47525ed0f9c24a55fd12504c805bc2068f8673e877a512bfb1f10f3
SHA512

ca6d67ff688a544a988b6bd8c1b54a66cd88e0331ea8e15bf7fee423344d4529d0b5cb014bc2f40e4bb2c405fea504992bca924a7d24a487150489987588cd55
SSDEEP

3072:+zFEhaHHIUjCgArLEZXApH3UHE360eBSYURMUSepsMdy:KFzHIU2Y9KEHE36ZBSxEMo

Score

10^/10

emotet banker discovery trojan

Malware Config

Targets

- Target
  
  dbebbd9713c4c448a1445025252b19b4_JaffaCakes118
- Size
  
  166KB
- MD5
  
  dbebbd9713c4c448a1445025252b19b4
- SHA1
  
  e4f399af55596db10da94d6ae10e1bf7d74db187
- SHA256
  
  7b5c6edff47525ed0f9c24a55fd12504c805bc2068f8673e877a512bfb1f10f3
- SHA512
  
  ca6d67ff688a544a988b6bd8c1b54a66cd88e0331ea8e15bf7fee423344d4529d0b5cb014bc2f40e4bb2c405fea504992bca924a7d24a487150489987588cd55
- SSDEEP
  
  3072:+zFEhaHHIUjCgArLEZXApH3UHE360eBSYURMUSepsMdy:KFzHIU2Y9KEHE36ZBSxEMo
Score

10^/10

emotet banker discovery trojan
- Emotet
  Emotet is a trojan that is primarily spread through spam emails.
  trojan banker emotet
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

emotetbankerdiscoverytrojan

behavioral2

emotetbankerdiscoverytrojan