emotet | c8cafa38511409eead2fa9b2573a683deef85ddb732c32b770570b094d75ec76 | Triage

Sharing

General

Target

dcd71aa1485de77d108f28c8c5a2911f_JaffaCakes118
Size

166KB
Sample

240912-xfh6psydqf
MD5

dcd71aa1485de77d108f28c8c5a2911f
SHA1

8f9300c03fd6cb345829317e3e9a8ebb5446151c
SHA256

c8cafa38511409eead2fa9b2573a683deef85ddb732c32b770570b094d75ec76
SHA512

2d05077fd2d73ad8835d12b76f97240b6a8f92f131531920e6a3833b646c15608d24044cc88a6810dc8d9330d1d4fc3c1162ebbb6413dfc5402901b9bac02e67
SSDEEP

3072:FzFEhaHHIUjCgArLEZXApH3UHE360eBSYURMvSepsMdin:tFzHIU2Y9KEHE36ZBSeEMS

Score

10^/10

emotet banker discovery trojan

Malware Config

Targets

- Target
  
  dcd71aa1485de77d108f28c8c5a2911f_JaffaCakes118
- Size
  
  166KB
- MD5
  
  dcd71aa1485de77d108f28c8c5a2911f
- SHA1
  
  8f9300c03fd6cb345829317e3e9a8ebb5446151c
- SHA256
  
  c8cafa38511409eead2fa9b2573a683deef85ddb732c32b770570b094d75ec76
- SHA512
  
  2d05077fd2d73ad8835d12b76f97240b6a8f92f131531920e6a3833b646c15608d24044cc88a6810dc8d9330d1d4fc3c1162ebbb6413dfc5402901b9bac02e67
- SSDEEP
  
  3072:FzFEhaHHIUjCgArLEZXApH3UHE360eBSYURMvSepsMdin:tFzHIU2Y9KEHE36ZBSeEMS
Score

10^/10

emotet banker discovery trojan
- Emotet
  Emotet is a trojan that is primarily spread through spam emails.
  trojan banker emotet
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

emotetbankerdiscoverytrojan

behavioral2

emotetbankerdiscoverytrojan