emotet

General

Target

fa9912b70f8ca3d60f014f941fd10e05_JaffaCakes118
Size

544KB
Sample

240927-r6blnaxejk
MD5

fa9912b70f8ca3d60f014f941fd10e05
SHA1

295d5496327b0ceb34eaf045b41488adab30fe73
SHA256

0c136a4c21cec7e7b9d67affe73a0aa858bb115b853df7a2be3bea8221a12345
SHA512

c21a16494eb571e4d415914c4e9547879572ef9a5891086b318b51d0560f21566b5d81a2554054dbe68e37ac1168335d709c3fa0df3575113ca3de58c755c604
SSDEEP

6144:1Tp3XYyIMYUTgOBeWoavwiU+yQ5g22222222222275WYyk:1Tp3XYBUEOBeGwiUvb5WYyk

Score

10^/10

Malware Config

Extracted

Family

emotet

Botnet

Epoch2

C2

107.5.122.110:80

199.101.86.6:443

45.55.219.163:443

62.30.7.67:443

185.94.252.104:443

203.117.253.142:80

93.51.50.171:8080

139.130.242.43:80

181.230.116.163:80

37.187.72.193:8080

194.187.133.160:443

167.86.90.214:8080

61.19.246.238:443

98.109.204.230:80

180.92.239.110:8080

121.124.124.40:7080

47.146.117.214:80

110.145.77.103:80

97.82.79.83:80

70.121.172.89:80

rsa_pubkey.plain

Targets

- Target
  
  fa9912b70f8ca3d60f014f941fd10e05_JaffaCakes118
- Size
  
  544KB
- MD5
  
  fa9912b70f8ca3d60f014f941fd10e05
- SHA1
  
  295d5496327b0ceb34eaf045b41488adab30fe73
- SHA256
  
  0c136a4c21cec7e7b9d67affe73a0aa858bb115b853df7a2be3bea8221a12345
- SHA512
  
  c21a16494eb571e4d415914c4e9547879572ef9a5891086b318b51d0560f21566b5d81a2554054dbe68e37ac1168335d709c3fa0df3575113ca3de58c755c604
- SSDEEP
  
  6144:1Tp3XYyIMYUTgOBeWoavwiU+yQ5g22222222222275WYyk:1Tp3XYBUEOBeGwiUvb5WYyk
Score

10^/10

emotet epoch2 banker discovery trojan
- Emotet
  Emotet is a trojan that is primarily spread through spam emails.
  trojan banker emotet
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2