General

  • Target

    47f9e69d84863b5c2e4a4c8a68a5c7f1e89244b0513d4ed9ce085439b65f7d94

  • Size

    388KB

  • Sample

    241112-1pkbxascll

  • MD5

    eaa3733f72da6cd087c490a290682272

  • SHA1

    2894bc09c372e85001d640704e740a9f36a4602b

  • SHA256

    47f9e69d84863b5c2e4a4c8a68a5c7f1e89244b0513d4ed9ce085439b65f7d94

  • SHA512

    17c09bd563c6d83b42776b8979ce4d3a18a4e86441a3fbe56bacaf7c708a59f567a2d5bb85a4798e9eae95797e35848df746e86f849d2d9856e4eae461c9daf4

  • SSDEEP

    6144:n4m/apJdyV8fDpJ8SAGGwGGGGi/cNmGzc3A64hLFWrG:T/aPdWsU3z4ZuG

Malware Config

Extracted

Family

emotet

Botnet

Epoch1

C2

207.144.103.227:80

94.76.247.61:8080

213.176.36.147:8080

186.103.141.250:443

82.76.111.249:443

172.104.169.32:8080

91.222.77.105:80

185.94.252.27:443

213.60.96.117:80

177.73.0.98:443

58.171.153.81:80

77.55.211.77:8080

143.0.87.101:80

170.81.48.2:80

80.249.176.206:80

114.109.179.60:80

82.196.15.205:8080

73.116.193.136:80

192.241.146.84:8080

5.196.35.138:7080

rsa_pubkey.plain

Targets

    • Target

      47f9e69d84863b5c2e4a4c8a68a5c7f1e89244b0513d4ed9ce085439b65f7d94

    • Size

      388KB

    • MD5

      eaa3733f72da6cd087c490a290682272

    • SHA1

      2894bc09c372e85001d640704e740a9f36a4602b

    • SHA256

      47f9e69d84863b5c2e4a4c8a68a5c7f1e89244b0513d4ed9ce085439b65f7d94

    • SHA512

      17c09bd563c6d83b42776b8979ce4d3a18a4e86441a3fbe56bacaf7c708a59f567a2d5bb85a4798e9eae95797e35848df746e86f849d2d9856e4eae461c9daf4

    • SSDEEP

      6144:n4m/apJdyV8fDpJ8SAGGwGGGGi/cNmGzc3A64hLFWrG:T/aPdWsU3z4ZuG

MITRE ATT&CK Enterprise v15

Tasks