General

  • Target

    db6ae7c3ac6942709da7237c3644ac11df70b864fdcc5aaf6959d5b0531c3040

  • Size

    220KB

  • Sample

    241112-1a3jya1jav

  • MD5

    5a01c8b772e890e48faac94e7bfa47eb

  • SHA1

    df401efc5e7fa7a2ae2787148879e600c314238a

  • SHA256

    db6ae7c3ac6942709da7237c3644ac11df70b864fdcc5aaf6959d5b0531c3040

  • SHA512

    ebb8e5b9028a31e9b4298e8a504ebd1a0177123503b854be2bad40075a0a856af3785c53094e29abb2ea086d453b35069aa5de21619a82ae001730cd73ae8a0c

  • SSDEEP

    3072:9QAtEQkstBPSlKHW/i/WUWHLiMrHLCjJK0ToGd:9LEOVSoHW6CHOMrHkMm

Malware Config

Extracted

Family

emotet

Botnet

Epoch1

C2

24.249.135.121:80

185.94.252.13:443

149.62.173.247:8080

50.28.51.143:8080

80.249.176.206:80

5.196.35.138:7080

190.17.195.202:80

143.0.87.101:80

190.147.137.153:443

181.30.69.50:80

51.255.165.160:8080

190.96.118.251:443

72.47.248.48:7080

178.79.163.131:8080

212.231.60.98:80

187.162.248.237:80

2.47.112.152:80

68.183.190.199:8080

192.241.143.52:8080

77.55.211.77:8080

rsa_pubkey.plain

Targets

    • Target

      db6ae7c3ac6942709da7237c3644ac11df70b864fdcc5aaf6959d5b0531c3040

    • Size

      220KB

    • MD5

      5a01c8b772e890e48faac94e7bfa47eb

    • SHA1

      df401efc5e7fa7a2ae2787148879e600c314238a

    • SHA256

      db6ae7c3ac6942709da7237c3644ac11df70b864fdcc5aaf6959d5b0531c3040

    • SHA512

      ebb8e5b9028a31e9b4298e8a504ebd1a0177123503b854be2bad40075a0a856af3785c53094e29abb2ea086d453b35069aa5de21619a82ae001730cd73ae8a0c

    • SSDEEP

      3072:9QAtEQkstBPSlKHW/i/WUWHLiMrHLCjJK0ToGd:9LEOVSoHW6CHOMrHkMm

MITRE ATT&CK Enterprise v15

Tasks