emotet | 67fd9afb3d59d1bbeb53cc212fd4d66c0d0af5274afa3a0f0dc82b018266a516 | Triage

Sharing

General

Target

f582da103c51f7bcdc2ee396fad2bd2c_JaffaCakes118
Size

267KB
Sample

240925-jfvylswdka
MD5

f582da103c51f7bcdc2ee396fad2bd2c
SHA1

a2ff74690436924198255a26bd473065092c85fb
SHA256

67fd9afb3d59d1bbeb53cc212fd4d66c0d0af5274afa3a0f0dc82b018266a516
SHA512

8f2f9ac4f775d50e72e3c241e7ebba48791f5fd8d1e84c8631cf09965f910676b7381b4fcdafaed3fd17c2106d26008420912bf2e9c17cf8ba4c503fdc16baa1
SSDEEP

6144:oRX2o6JvwA1DXDdNHvbyVfbWWbyHjaSKzdbybbybnv4ZPTlebuSE:oRB6JvdbDdNHvbyVfbWWbyHjaSabybb0

Score

10^/10

emotet banker discovery trojan

Malware Config

Targets

- Target
  
  f582da103c51f7bcdc2ee396fad2bd2c_JaffaCakes118
- Size
  
  267KB
- MD5
  
  f582da103c51f7bcdc2ee396fad2bd2c
- SHA1
  
  a2ff74690436924198255a26bd473065092c85fb
- SHA256
  
  67fd9afb3d59d1bbeb53cc212fd4d66c0d0af5274afa3a0f0dc82b018266a516
- SHA512
  
  8f2f9ac4f775d50e72e3c241e7ebba48791f5fd8d1e84c8631cf09965f910676b7381b4fcdafaed3fd17c2106d26008420912bf2e9c17cf8ba4c503fdc16baa1
- SSDEEP
  
  6144:oRX2o6JvwA1DXDdNHvbyVfbWWbyHjaSKzdbybbybnv4ZPTlebuSE:oRB6JvdbDdNHvbyVfbWWbyHjaSabybb0
Score

10^/10

emotet banker discovery trojan
- Emotet
  Emotet is a trojan that is primarily spread through spam emails.
  trojan banker emotet
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

emotetbankerdiscoverytrojan

behavioral2

emotetbankerdiscoverytrojan