General

  • Target

    f03cffbce2727561e143ffe3b19563a93616ce05d8d95ad28f161e112ee7f9ab

  • Size

    654KB

  • Sample

    241112-zft93s1bpb

  • MD5

    8eb0795ffa4ea72c1fec068c9206414a

  • SHA1

    ef1ab9c23bc81585c548f073895d24b0fe06e3e9

  • SHA256

    f03cffbce2727561e143ffe3b19563a93616ce05d8d95ad28f161e112ee7f9ab

  • SHA512

    6b6e7e0cfc1974c2c971d9492b9887919be6373f212383525b2896d6afa74cebcb0476ed7ddfc9d716e1aef3395962a58778f39ce5d3443fe6e22a80f9be7b16

  • SSDEEP

    12288:Y4wcc2MydZgRd9aa8l85Qr0t6DZ32QcbplMyVJqh+LYqNr85M3doZtw29ke8QNG0:Y4wcc2WRd9aaKDhAkyVJ4ZqNr85M3doX

Malware Config

Extracted

Family

emotet

Botnet

Epoch4

C2

149.56.131.28:8080

72.15.201.15:8080

207.148.79.14:8080

82.165.152.127:8080

46.55.222.11:443

213.241.20.155:443

163.44.196.120:8080

51.254.140.238:7080

107.170.39.149:8080

188.44.20.25:443

82.223.21.224:8080

172.104.251.154:8080

164.68.99.3:8080

101.50.0.91:8080

129.232.188.93:443

173.212.193.249:8080

103.132.242.26:8080

186.194.240.217:443

37.187.115.122:8080

91.207.28.33:8080

eck1.plain
ecs1.plain

Targets

    • Target

      f03cffbce2727561e143ffe3b19563a93616ce05d8d95ad28f161e112ee7f9ab

    • Size

      654KB

    • MD5

      8eb0795ffa4ea72c1fec068c9206414a

    • SHA1

      ef1ab9c23bc81585c548f073895d24b0fe06e3e9

    • SHA256

      f03cffbce2727561e143ffe3b19563a93616ce05d8d95ad28f161e112ee7f9ab

    • SHA512

      6b6e7e0cfc1974c2c971d9492b9887919be6373f212383525b2896d6afa74cebcb0476ed7ddfc9d716e1aef3395962a58778f39ce5d3443fe6e22a80f9be7b16

    • SSDEEP

      12288:Y4wcc2MydZgRd9aa8l85Qr0t6DZ32QcbplMyVJqh+LYqNr85M3doZtw29ke8QNG0:Y4wcc2WRd9aaKDhAkyVJ4ZqNr85M3doX

MITRE ATT&CK Matrix

Tasks