General

  • Target

    5d4bcdeca73c51c3bc5d9f96361d44eb9451d58086e862e3f19338cc25de0380

  • Size

    469KB

  • Sample

    241112-zkh3lstqfk

  • MD5

    756d8818f56b668abba903666312150d

  • SHA1

    d0c063a17f471c475076e2983779ad107e289e6e

  • SHA256

    5d4bcdeca73c51c3bc5d9f96361d44eb9451d58086e862e3f19338cc25de0380

  • SHA512

    cae1988bd8c11d3ec1407ab3e5e72b4c2b0275cdf9e94bfd85ebf2ce4a828cf7b8bc40412d1cdc6fc51b0aa8c3e7c9e4cfcdf542ab588d9f7038e9a3b5ae94f5

  • SSDEEP

    12288:ls+k+BhmNW5gjmFloqiiiYoWoXvJMTBW648U4h5+I:lJbmNWhFloqiiiYoWoXvJM1fU4K

Malware Config

Extracted

Family

emotet

Botnet

Epoch4

C2

131.100.24.231:80

209.59.138.75:7080

103.8.26.103:8080

51.38.71.0:443

212.237.17.99:8080

79.172.212.216:8080

207.38.84.195:8080

104.168.155.129:8080

178.79.147.66:8080

46.55.222.11:443

103.8.26.102:8080

192.254.71.210:443

45.176.232.124:443

203.114.109.124:443

51.68.175.8:8080

58.227.42.236:80

45.142.114.231:8080

217.182.143.207:443

178.63.25.185:443

45.118.115.99:8080

eck1.plain
ecs1.plain

Targets

    • Target

      5d4bcdeca73c51c3bc5d9f96361d44eb9451d58086e862e3f19338cc25de0380

    • Size

      469KB

    • MD5

      756d8818f56b668abba903666312150d

    • SHA1

      d0c063a17f471c475076e2983779ad107e289e6e

    • SHA256

      5d4bcdeca73c51c3bc5d9f96361d44eb9451d58086e862e3f19338cc25de0380

    • SHA512

      cae1988bd8c11d3ec1407ab3e5e72b4c2b0275cdf9e94bfd85ebf2ce4a828cf7b8bc40412d1cdc6fc51b0aa8c3e7c9e4cfcdf542ab588d9f7038e9a3b5ae94f5

    • SSDEEP

      12288:ls+k+BhmNW5gjmFloqiiiYoWoXvJMTBW648U4h5+I:lJbmNWhFloqiiiYoWoXvJM1fU4K

MITRE ATT&CK Enterprise v15

Tasks