General

  • Target

    d9122f59a262aaf29511180074b1896437575cf9157787cd6062ca539a4025bd

  • Size

    804KB

  • Sample

    241112-1b4tdsvmgj

  • MD5

    8db322ab4b9b9498d97c4c449b4cfce8

  • SHA1

    7e6e3f1bcd9e96ebb796bb36cd665f9eb5a2eb6a

  • SHA256

    d9122f59a262aaf29511180074b1896437575cf9157787cd6062ca539a4025bd

  • SHA512

    ca82a0edc25e2548f9679dab492119044c833773a121b54ba5220ed428d7c93b0db1dc1bfd3f53ddbe1ed89d33ed22ed8785c4612851589a0f87bc9661b0d42a

  • SSDEEP

    12288:ogBPA27vorE7ed3r5WTgOPsHsU3z4ZuF:eevoaErsTNzyQ

Malware Config

Extracted

Family

emotet

Botnet

Epoch1

C2

174.100.27.229:80

209.126.6.222:8080

5.153.250.14:8080

192.241.146.84:8080

95.9.180.128:80

77.55.211.77:8080

85.105.140.135:443

45.33.77.42:8080

77.90.136.129:8080

94.176.234.118:443

190.163.31.26:80

190.6.193.152:8080

190.181.235.46:80

81.198.69.61:80

188.2.217.94:80

114.109.179.60:80

83.169.21.32:7080

137.74.106.111:7080

212.231.60.98:80

170.81.48.2:80

rsa_pubkey.plain

Targets

    • Target

      d9122f59a262aaf29511180074b1896437575cf9157787cd6062ca539a4025bd

    • Size

      804KB

    • MD5

      8db322ab4b9b9498d97c4c449b4cfce8

    • SHA1

      7e6e3f1bcd9e96ebb796bb36cd665f9eb5a2eb6a

    • SHA256

      d9122f59a262aaf29511180074b1896437575cf9157787cd6062ca539a4025bd

    • SHA512

      ca82a0edc25e2548f9679dab492119044c833773a121b54ba5220ed428d7c93b0db1dc1bfd3f53ddbe1ed89d33ed22ed8785c4612851589a0f87bc9661b0d42a

    • SSDEEP

      12288:ogBPA27vorE7ed3r5WTgOPsHsU3z4ZuF:eevoaErsTNzyQ

MITRE ATT&CK Enterprise v15

Tasks