General

  • Target

    9967698062e9c45efdda2c2e4722c65b074d01df4eee9b8c266a19222ec56d9e

  • Size

    341KB

  • Sample

    241112-zn9dza1dlb

  • MD5

    548c82170e65a67cb128ffe8932ca062

  • SHA1

    1140cae046a1e62e24ea9353414f8b9c18f68c5a

  • SHA256

    9967698062e9c45efdda2c2e4722c65b074d01df4eee9b8c266a19222ec56d9e

  • SHA512

    e647ebf769c60852f1fb5801b3a72909caa887fb9bae51de677b6e10d07e2e5917ed514240fe2edfbac4fe97d4d1c2885e5db61b94c733dbb7a90f1821f55be1

  • SSDEEP

    6144:vxJyYjHgeJwLbsOVGhvRdNUPTjImtnhGlhNDpSCP8rppDc:L3q8+GrdedhGvNDpSO8pA

Malware Config

Extracted

Family

emotet

Botnet

Epoch2

C2

208.180.207.205:80

167.114.153.111:8080

169.50.76.149:8080

87.106.136.232:8080

134.209.36.254:8080

110.145.77.103:80

61.19.246.238:443

218.147.193.146:80

194.4.58.192:7080

123.176.25.234:80

139.99.158.11:443

174.106.122.139:80

137.59.187.107:8080

37.187.72.193:8080

168.235.67.138:7080

190.108.228.27:443

139.59.60.244:8080

184.180.181.202:80

71.72.196.159:80

47.144.21.12:443

rsa_pubkey.plain

Targets

    • Target

      9967698062e9c45efdda2c2e4722c65b074d01df4eee9b8c266a19222ec56d9e

    • Size

      341KB

    • MD5

      548c82170e65a67cb128ffe8932ca062

    • SHA1

      1140cae046a1e62e24ea9353414f8b9c18f68c5a

    • SHA256

      9967698062e9c45efdda2c2e4722c65b074d01df4eee9b8c266a19222ec56d9e

    • SHA512

      e647ebf769c60852f1fb5801b3a72909caa887fb9bae51de677b6e10d07e2e5917ed514240fe2edfbac4fe97d4d1c2885e5db61b94c733dbb7a90f1821f55be1

    • SSDEEP

      6144:vxJyYjHgeJwLbsOVGhvRdNUPTjImtnhGlhNDpSCP8rppDc:L3q8+GrdedhGvNDpSO8pA

MITRE ATT&CK Enterprise v15

Tasks