General

  • Target

    095b1c37ea1524836e262dbf46adda9c596f0d852eddb0cd8c388e85691efe59

  • Size

    612KB

  • Sample

    241113-ra17fasndv

  • MD5

    23410b0c958c16bde9f9897842191b2d

  • SHA1

    469dd24373467d16e19bfb20da8752164000bf11

  • SHA256

    095b1c37ea1524836e262dbf46adda9c596f0d852eddb0cd8c388e85691efe59

  • SHA512

    f57f5c37563085ea1dd2acf6ba5c98df9d3967c6a84436094fbcbbc5003dc0eda1f275f2538e9929ebba831885c4cdb5a20d74c1b311af79a521b788e9a0bdb3

  • SSDEEP

    12288:kqdJaxkOWFornPmGZqnTFWbD0UYVubhesslBvQqEPO7:kOOsornPTwFWbxYVohevBoi7

Malware Config

Extracted

Family

emotet

Botnet

Epoch4

C2

131.100.24.231:80

209.59.138.75:7080

103.8.26.103:8080

51.38.71.0:443

212.237.17.99:8080

79.172.212.216:8080

207.38.84.195:8080

104.168.155.129:8080

178.79.147.66:8080

46.55.222.11:443

103.8.26.102:8080

192.254.71.210:443

45.176.232.124:443

203.114.109.124:443

51.68.175.8:8080

58.227.42.236:80

45.142.114.231:8080

217.182.143.207:443

178.63.25.185:443

45.118.115.99:8080

eck1.plain
ecs1.plain

Targets

    • Target

      095b1c37ea1524836e262dbf46adda9c596f0d852eddb0cd8c388e85691efe59

    • Size

      612KB

    • MD5

      23410b0c958c16bde9f9897842191b2d

    • SHA1

      469dd24373467d16e19bfb20da8752164000bf11

    • SHA256

      095b1c37ea1524836e262dbf46adda9c596f0d852eddb0cd8c388e85691efe59

    • SHA512

      f57f5c37563085ea1dd2acf6ba5c98df9d3967c6a84436094fbcbbc5003dc0eda1f275f2538e9929ebba831885c4cdb5a20d74c1b311af79a521b788e9a0bdb3

    • SSDEEP

      12288:kqdJaxkOWFornPmGZqnTFWbD0UYVubhesslBvQqEPO7:kOOsornPTwFWbxYVohevBoi7

MITRE ATT&CK Enterprise v15

Tasks