General

  • Target

    93ac5617609423732a58cbf2a92bfbf437dade09e2b03c5be169b9300d97e57e

  • Size

    772KB

  • Sample

    241113-v7shcazkcp

  • MD5

    72b1b59d1c91b9bcc90538655052569e

  • SHA1

    81b8e0ef95f2068d239d50547a132686776572e2

  • SHA256

    93ac5617609423732a58cbf2a92bfbf437dade09e2b03c5be169b9300d97e57e

  • SHA512

    80d23537cbe5ac0d8da960c4d2398a0f28fc6ed4c0f5ee52447c5bc2c259559048c23b33e7cdda00a8ad68b73dab2b01259eb6cc087c454af91dbd7f9db04d2f

  • SSDEEP

    12288:q5q4Q0ti//RlGGxk4AJbXNFJ7701hToszPGGmuFo279Dq:Cq70o/Rljk4AdNL70/f3mao2ZD

Malware Config

Extracted

Family

emotet

Botnet

Epoch1

C2

65.36.62.20:80

209.126.6.222:8080

5.153.250.14:8080

204.225.249.100:7080

77.90.136.129:8080

185.94.252.27:443

85.105.140.135:443

83.169.21.32:7080

190.190.148.27:8080

185.94.252.12:80

116.125.120.88:443

190.115.18.139:8080

61.92.159.208:8080

24.148.98.177:80

212.93.117.170:80

91.219.169.180:80

73.116.193.136:80

87.106.46.107:8080

187.162.248.237:80

70.32.115.157:8080

rsa_pubkey.plain

Targets

    • Target

      93ac5617609423732a58cbf2a92bfbf437dade09e2b03c5be169b9300d97e57e

    • Size

      772KB

    • MD5

      72b1b59d1c91b9bcc90538655052569e

    • SHA1

      81b8e0ef95f2068d239d50547a132686776572e2

    • SHA256

      93ac5617609423732a58cbf2a92bfbf437dade09e2b03c5be169b9300d97e57e

    • SHA512

      80d23537cbe5ac0d8da960c4d2398a0f28fc6ed4c0f5ee52447c5bc2c259559048c23b33e7cdda00a8ad68b73dab2b01259eb6cc087c454af91dbd7f9db04d2f

    • SSDEEP

      12288:q5q4Q0ti//RlGGxk4AJbXNFJ7701hToszPGGmuFo279Dq:Cq70o/Rljk4AdNL70/f3mao2ZD

MITRE ATT&CK Enterprise v15

Tasks