General

  • Target

    811608f2906a6934a36012abff2a5489f42907801d14c601c4b6152d329ca674

  • Size

    728KB

  • Sample

    241113-rcmf3asnfz

  • MD5

    1a062cf3c3b02f36bcfa69bf1223906a

  • SHA1

    8a24000be5963e79b4a6cf46a2697ae4d24d9bc6

  • SHA256

    811608f2906a6934a36012abff2a5489f42907801d14c601c4b6152d329ca674

  • SHA512

    00541571b9ec1c9cf6c6590769fa6d003c240742a285af6407a72a5987ec4c7dc60bcec75d9e629aea04a05cef5852b5831ec806313e1ac8dc10e27b13d1a1ff

  • SSDEEP

    12288:aIabL1+x29hs+bDBLKhKmCKzTrjwi0I8PxiGhWzx+o8/NQfN7IT5p:XabLXhs7AZKzvjVT0hWzP8/yfRIT3

Malware Config

Extracted

Family

emotet

Botnet

Epoch5

C2

68.183.91.111:8080

164.52.194.45:8080

202.29.239.162:443

54.38.143.246:7080

54.37.106.167:8080

185.148.168.220:8080

196.44.98.190:8080

175.126.176.79:8080

207.148.81.119:8080

37.59.209.141:8080

103.42.58.120:7080

54.37.228.122:443

68.183.93.250:443

66.42.57.149:443

45.71.195.104:8080

78.47.204.80:443

128.199.192.135:8080

195.154.146.35:443

118.98.72.86:443

116.124.128.206:8080

eck1.plain
ecs1.plain

Targets

    • Target

      811608f2906a6934a36012abff2a5489f42907801d14c601c4b6152d329ca674

    • Size

      728KB

    • MD5

      1a062cf3c3b02f36bcfa69bf1223906a

    • SHA1

      8a24000be5963e79b4a6cf46a2697ae4d24d9bc6

    • SHA256

      811608f2906a6934a36012abff2a5489f42907801d14c601c4b6152d329ca674

    • SHA512

      00541571b9ec1c9cf6c6590769fa6d003c240742a285af6407a72a5987ec4c7dc60bcec75d9e629aea04a05cef5852b5831ec806313e1ac8dc10e27b13d1a1ff

    • SSDEEP

      12288:aIabL1+x29hs+bDBLKhKmCKzTrjwi0I8PxiGhWzx+o8/NQfN7IT5p:XabLXhs7AZKzvjVT0hWzP8/yfRIT3

MITRE ATT&CK Matrix

Tasks