emotet | f294fbbafd14536e870392e30a4285b4a65048ebfcf1858291cb3699dd4e1819 | Triage

Sharing

General

Target

e1c20d60f17d219f6f7fd3e39bc1c396_JaffaCakes118
Size

92KB
Sample

240915-fsfsnsxaqe
MD5

e1c20d60f17d219f6f7fd3e39bc1c396
SHA1

7bfd2e391c6e43385d96abb9147750baaef28033
SHA256

f294fbbafd14536e870392e30a4285b4a65048ebfcf1858291cb3699dd4e1819
SHA512

d82f84645af45f79c6091b5e2b85805a6a10008fe9aad1cfafe230587be26a913d02c937b232bcd2540df1ad741babdc15ad547d85b96c8855369e18eec666f9
SSDEEP

1536:G93cDBQCpF5iLQh+l9rzER0LkQd0eoLzxcibkhkhXmH8Wnu82zmMFGh3M3cxaGqm:G9QQy5izNq0rQzxcibQkmcWSzXGhGway

Score

10^/10

emotet banker discovery trojan

Malware Config

Targets

- Target
  
  e1c20d60f17d219f6f7fd3e39bc1c396_JaffaCakes118
- Size
  
  92KB
- MD5
  
  e1c20d60f17d219f6f7fd3e39bc1c396
- SHA1
  
  7bfd2e391c6e43385d96abb9147750baaef28033
- SHA256
  
  f294fbbafd14536e870392e30a4285b4a65048ebfcf1858291cb3699dd4e1819
- SHA512
  
  d82f84645af45f79c6091b5e2b85805a6a10008fe9aad1cfafe230587be26a913d02c937b232bcd2540df1ad741babdc15ad547d85b96c8855369e18eec666f9
- SSDEEP
  
  1536:G93cDBQCpF5iLQh+l9rzER0LkQd0eoLzxcibkhkhXmH8Wnu82zmMFGh3M3cxaGqm:G9QQy5izNq0rQzxcibQkmcWSzXGhGway
Score

10^/10

emotet banker discovery trojan
- Emotet
  Emotet is a trojan that is primarily spread through spam emails.
  trojan banker emotet
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

emotetbankerdiscoverytrojan

behavioral2

emotetbankerdiscoverytrojan