General

  • Target

    7528530f2bf28fe75c7d818b85e4a7ee434d48ab3b1a72eada9905329fd123d9

  • Size

    617KB

  • Sample

    241112-zlrq5s1dpk

  • MD5

    ae5b18cf852b13e8eda39905076db582

  • SHA1

    d859d8a527b0e4e34ab01026d36c788c2879434d

  • SHA256

    7528530f2bf28fe75c7d818b85e4a7ee434d48ab3b1a72eada9905329fd123d9

  • SHA512

    4e5f97a2350f3c7a87c4ed8027f7ef4fc4dd72f5ee8ae68a1b1d1ede2150ae149fdf93d5a6c0f61ff685d1f1dff427a3450dc287231af986d6f8a5104c30aaa4

  • SSDEEP

    12288:XXTEnejfEqrrSTw1ww2Yo0MCx1HXqxklNG6cypvjVBRAwvEP+8/H:HIgfT2sO6t3HXqeGejbG

Malware Config

Extracted

Family

emotet

Botnet

Epoch1

C2

207.144.103.227:80

94.76.247.61:8080

213.176.36.147:8080

186.103.141.250:443

82.76.111.249:443

172.104.169.32:8080

91.222.77.105:80

185.94.252.27:443

213.60.96.117:80

177.73.0.98:443

58.171.153.81:80

77.55.211.77:8080

143.0.87.101:80

170.81.48.2:80

80.249.176.206:80

114.109.179.60:80

82.196.15.205:8080

73.116.193.136:80

192.241.146.84:8080

5.196.35.138:7080

rsa_pubkey.plain

Targets

    • Target

      7528530f2bf28fe75c7d818b85e4a7ee434d48ab3b1a72eada9905329fd123d9

    • Size

      617KB

    • MD5

      ae5b18cf852b13e8eda39905076db582

    • SHA1

      d859d8a527b0e4e34ab01026d36c788c2879434d

    • SHA256

      7528530f2bf28fe75c7d818b85e4a7ee434d48ab3b1a72eada9905329fd123d9

    • SHA512

      4e5f97a2350f3c7a87c4ed8027f7ef4fc4dd72f5ee8ae68a1b1d1ede2150ae149fdf93d5a6c0f61ff685d1f1dff427a3450dc287231af986d6f8a5104c30aaa4

    • SSDEEP

      12288:XXTEnejfEqrrSTw1ww2Yo0MCx1HXqxklNG6cypvjVBRAwvEP+8/H:HIgfT2sO6t3HXqeGejbG

MITRE ATT&CK Enterprise v15

Tasks