emotet | cb41db92f2c3b9afa422fc65a6df8e55d26fadac58077fa706bc5c40929c89cb | Triage

Sharing

General

Target

f232ddd059c6b6f4dd06a108ddc345fa_JaffaCakes118
Size

178KB
Sample

240922-rtspeatglp
MD5

f232ddd059c6b6f4dd06a108ddc345fa
SHA1

40aea6cac746247895abb6efdf73cd594a359b90
SHA256

cb41db92f2c3b9afa422fc65a6df8e55d26fadac58077fa706bc5c40929c89cb
SHA512

a429306fae3f4f78659037ff7de68c9bac4e2ce202d1d4020fad091125ba1804ed90f188ebb43d71b1c9a33f2e3962ee5589813534fa50795915c5fa02629766
SSDEEP

3072:zzFEhJHHIUjCgArLEZXApH3UHE360+SYU6RWRNMhKjSjc:nFkHIU2Y9KEHE36fS0Erm4

Score

10^/10

emotet banker discovery trojan

Malware Config

Targets

- Target
  
  f232ddd059c6b6f4dd06a108ddc345fa_JaffaCakes118
- Size
  
  178KB
- MD5
  
  f232ddd059c6b6f4dd06a108ddc345fa
- SHA1
  
  40aea6cac746247895abb6efdf73cd594a359b90
- SHA256
  
  cb41db92f2c3b9afa422fc65a6df8e55d26fadac58077fa706bc5c40929c89cb
- SHA512
  
  a429306fae3f4f78659037ff7de68c9bac4e2ce202d1d4020fad091125ba1804ed90f188ebb43d71b1c9a33f2e3962ee5589813534fa50795915c5fa02629766
- SSDEEP
  
  3072:zzFEhJHHIUjCgArLEZXApH3UHE360+SYU6RWRNMhKjSjc:nFkHIU2Y9KEHE36fS0Erm4
Score

10^/10

emotet banker discovery trojan
- Emotet
  Emotet is a trojan that is primarily spread through spam emails.
  trojan banker emotet
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

emotetbankerdiscoverytrojan

behavioral2

emotetbankerdiscoverytrojan