General

  • Target

    94227c536f36853c486a0b085819cdb4e38c3b319567f078b4d27f3f7d88d448

  • Size

    388KB

  • Sample

    241112-1a114svmep

  • MD5

    6d4a4f7431013c20dd4d3c4407e866f0

  • SHA1

    6ebd650a4c5406093c5b464faf9f132f7b0e3d21

  • SHA256

    94227c536f36853c486a0b085819cdb4e38c3b319567f078b4d27f3f7d88d448

  • SHA512

    263df5e5d05dfbacb9fdbf7be46763b6cbe2def6cffbd679f5d72cea467b888052448f91af186b640ec0630c2b6c0e95f47c028c05be5886850965fffc63b702

  • SSDEEP

    6144:T4m/apJdyV8fDp28SAGGwGGGGi/cNmGzc3A6431xVMe:X/aPdnsU3z431xVh

Malware Config

Extracted

Family

emotet

Botnet

Epoch2

C2

24.233.112.152:80

69.30.203.214:8080

192.210.135.126:8080

47.144.21.12:443

157.245.99.39:8080

119.198.40.179:80

62.75.141.82:80

181.211.11.242:80

167.86.90.214:8080

95.213.236.64:8080

87.106.139.101:8080

109.74.5.95:8080

142.105.151.124:443

47.146.117.214:80

185.94.252.104:443

2.58.16.85:7080

222.214.218.37:4143

85.105.205.77:8080

190.160.53.126:80

107.185.211.16:80

rsa_pubkey.plain

Targets

    • Target

      94227c536f36853c486a0b085819cdb4e38c3b319567f078b4d27f3f7d88d448

    • Size

      388KB

    • MD5

      6d4a4f7431013c20dd4d3c4407e866f0

    • SHA1

      6ebd650a4c5406093c5b464faf9f132f7b0e3d21

    • SHA256

      94227c536f36853c486a0b085819cdb4e38c3b319567f078b4d27f3f7d88d448

    • SHA512

      263df5e5d05dfbacb9fdbf7be46763b6cbe2def6cffbd679f5d72cea467b888052448f91af186b640ec0630c2b6c0e95f47c028c05be5886850965fffc63b702

    • SSDEEP

      6144:T4m/apJdyV8fDp28SAGGwGGGGi/cNmGzc3A6431xVMe:X/aPdnsU3z431xVh

MITRE ATT&CK Enterprise v15

Tasks