General

  • Target

    e140ebf5bf285b7a65ca003933f632cec44778b7858d908cef79f089a02c671e

  • Size

    68KB

  • Sample

    241113-rbpvsswpdr

  • MD5

    27b56d67db34a2aea137f75224863062

  • SHA1

    204343c579ae7c3cace63e7a6c12694a8b6630e7

  • SHA256

    e140ebf5bf285b7a65ca003933f632cec44778b7858d908cef79f089a02c671e

  • SHA512

    cc13a141fbae85249ccf42246d56ab0336de96aaa19eec5da6151f151d97964cf37acb1c720f49ad403819c1f59c39143829743232c1b977f006e15720193e26

  • SSDEEP

    1536:82nOIwpOenT+ws/yLmlTZrUrO1NWx+3q:82xgXnj8yLo3NLa

Malware Config

Extracted

Family

emotet

Botnet

Epoch3

C2

202.5.47.71:80

139.99.157.213:8080

188.166.25.84:8080

192.163.221.191:8080

181.113.229.139:443

115.79.195.246:80

113.161.148.81:80

37.46.129.215:8080

190.55.233.156:80

115.165.3.213:80

41.185.29.128:8080

51.38.201.19:7080

178.33.167.120:8080

46.105.131.68:8080

74.208.173.91:8080

143.95.101.72:8080

75.127.14.170:8080

78.188.170.128:80

115.78.11.155:80

203.153.216.182:7080

rsa_pubkey.plain

Targets

    • Target

      e140ebf5bf285b7a65ca003933f632cec44778b7858d908cef79f089a02c671e

    • Size

      68KB

    • MD5

      27b56d67db34a2aea137f75224863062

    • SHA1

      204343c579ae7c3cace63e7a6c12694a8b6630e7

    • SHA256

      e140ebf5bf285b7a65ca003933f632cec44778b7858d908cef79f089a02c671e

    • SHA512

      cc13a141fbae85249ccf42246d56ab0336de96aaa19eec5da6151f151d97964cf37acb1c720f49ad403819c1f59c39143829743232c1b977f006e15720193e26

    • SSDEEP

      1536:82nOIwpOenT+ws/yLmlTZrUrO1NWx+3q:82xgXnj8yLo3NLa

MITRE ATT&CK Enterprise v15

Tasks