emotet | c6b63eb6f4a72bb5841ef6d94a57973063cf42aadfc6abc0c68ec7ac9919a262 | Triage

Resubmissions

24-10-2024 19:37

241024-yca7csscmh 3

24-10-2024 19:37

241024-ybztbs1hmp 3

24-10-2024 10:32

241024-mkxvjsxfrr 10

Sharing

General

Target

734b5fa5babc8f51537d08668cb65b68_JaffaCakes118
Size

148KB
Sample

241024-mkxvjsxfrr
MD5

734b5fa5babc8f51537d08668cb65b68
SHA1

33f1ee444342c4baa157afbfa1e3ea7305dbbbb4
SHA256

c6b63eb6f4a72bb5841ef6d94a57973063cf42aadfc6abc0c68ec7ac9919a262
SHA512

5918b19162b0b67a2d0312acfc54f975de914aff2b554154a0133c94eb1d5f92063c0141813efa8249b655a8cc8cd4e9eeebad3040449a1795e05530d824e6d4
SSDEEP

3072:Otx+2sg/1+73x/SqI30TgYEnAHVeBKJwDgPMhD43zP0p:6ADg/W3xKqI30ToA1kKJYCG

Score

10^/10

emotet banker discovery trojan

Malware Config

Targets

- Target
  
  734b5fa5babc8f51537d08668cb65b68_JaffaCakes118
- Size
  
  148KB
- MD5
  
  734b5fa5babc8f51537d08668cb65b68
- SHA1
  
  33f1ee444342c4baa157afbfa1e3ea7305dbbbb4
- SHA256
  
  c6b63eb6f4a72bb5841ef6d94a57973063cf42aadfc6abc0c68ec7ac9919a262
- SHA512
  
  5918b19162b0b67a2d0312acfc54f975de914aff2b554154a0133c94eb1d5f92063c0141813efa8249b655a8cc8cd4e9eeebad3040449a1795e05530d824e6d4
- SSDEEP
  
  3072:Otx+2sg/1+73x/SqI30TgYEnAHVeBKJwDgPMhD43zP0p:6ADg/W3xKqI30ToA1kKJYCG
Score

10^/10

emotet banker discovery trojan
- Detect Emotet payload
- Emotet
  Emotet is a trojan that is primarily spread through spam emails.
  trojan banker emotet
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

emotetbankerdiscoverytrojan

behavioral2