emotet | 52633981af075259928529e089741f226aefb674c179982d1c45276c27e3667e | Triage

Sharing

General

Target

e254e83899db63edd94362d3694ae647_JaffaCakes118
Size

73KB
Sample

240915-m5d8yazgqh
MD5

e254e83899db63edd94362d3694ae647
SHA1

bccf2d460dae96a766d2978c4a5178e654e80dd8
SHA256

52633981af075259928529e089741f226aefb674c179982d1c45276c27e3667e
SHA512

b973848eccb726eaca1c9600493e91e4ab4d8ab8526dc4b0d2d1af09570cdefaae12930b84f2c56cb73306ce6cc663ef69d592899cecd8b5bc045a38576f9e40
SSDEEP

1536:p4MEpRNE4FMmRWEcT4YRFYNE3C4SIE/147M1gRQ/ESEhtRPDqIR844EiRr4WMkRN:p4MEpRNE4FMmRWEcT4YRFYNE3C4DE/1U

Score

10^/10

emotet banker discovery trojan

Malware Config

Targets

- Target
  
  e254e83899db63edd94362d3694ae647_JaffaCakes118
- Size
  
  73KB
- MD5
  
  e254e83899db63edd94362d3694ae647
- SHA1
  
  bccf2d460dae96a766d2978c4a5178e654e80dd8
- SHA256
  
  52633981af075259928529e089741f226aefb674c179982d1c45276c27e3667e
- SHA512
  
  b973848eccb726eaca1c9600493e91e4ab4d8ab8526dc4b0d2d1af09570cdefaae12930b84f2c56cb73306ce6cc663ef69d592899cecd8b5bc045a38576f9e40
- SSDEEP
  
  1536:p4MEpRNE4FMmRWEcT4YRFYNE3C4SIE/147M1gRQ/ESEhtRPDqIR844EiRr4WMkRN:p4MEpRNE4FMmRWEcT4YRFYNE3C4DE/1U
Score

10^/10

emotet banker discovery trojan
- Emotet
  Emotet is a trojan that is primarily spread through spam emails.
  trojan banker emotet
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

emotetbankerdiscoverytrojan

behavioral2

emotetbankerdiscoverytrojan