General

  • Target

    80ce0b81750add8ab13f19a96f30369344f1648e804d3508c824f31abbb3d71c

  • Size

    413KB

  • Sample

    241111-vs94vasejd

  • MD5

    ca3608d5d06bb64f0ef27079ec9db610

  • SHA1

    2affc7f23ff050e5f124e6d7c431b60bf4226a76

  • SHA256

    80ce0b81750add8ab13f19a96f30369344f1648e804d3508c824f31abbb3d71c

  • SHA512

    bbe5545cdda3c9f103435fc5648f96f9adfaf5009b00e7d592b809452798bbf110c8660d935d7383f55bb97746140d50fe9cb455cc5d2896e30096ff3a0e1101

  • SSDEEP

    6144:N/uf2XTixvh7bbWNVbrEqI1z96n9fNgE54zVR71pc:NW+257yMF1zgtGe4z

Malware Config

Extracted

Family

emotet

Botnet

Epoch5

C2

202.28.34.99:8080

80.211.107.116:8080

175.126.176.79:8080

218.38.121.17:443

139.196.72.155:8080

103.71.99.57:8080

87.106.97.83:7080

178.62.112.199:8080

64.227.55.231:8080

46.101.98.60:8080

54.37.228.122:443

128.199.217.206:443

190.145.8.4:443

209.239.112.82:8080

85.214.67.203:8080

198.199.70.22:8080

128.199.242.164:8080

178.238.225.252:8080

103.85.95.4:8080

103.126.216.86:443

eck1.plain
ecs1.plain

Targets

    • Target

      80ce0b81750add8ab13f19a96f30369344f1648e804d3508c824f31abbb3d71c

    • Size

      413KB

    • MD5

      ca3608d5d06bb64f0ef27079ec9db610

    • SHA1

      2affc7f23ff050e5f124e6d7c431b60bf4226a76

    • SHA256

      80ce0b81750add8ab13f19a96f30369344f1648e804d3508c824f31abbb3d71c

    • SHA512

      bbe5545cdda3c9f103435fc5648f96f9adfaf5009b00e7d592b809452798bbf110c8660d935d7383f55bb97746140d50fe9cb455cc5d2896e30096ff3a0e1101

    • SSDEEP

      6144:N/uf2XTixvh7bbWNVbrEqI1z96n9fNgE54zVR71pc:NW+257yMF1zgtGe4z

MITRE ATT&CK Matrix

Tasks