General

  • Target

    3e3bdd4d795ef301a7af4deb5665293941e22a72b9d9e478b76309f293265df3

  • Size

    892KB

  • Sample

    241113-vvxxasvqes

  • MD5

    f801b1d41a5e4b14df15832f03b269d4

  • SHA1

    1982bb2c1f6c80193b0d1a765018e6beedde50fe

  • SHA256

    3e3bdd4d795ef301a7af4deb5665293941e22a72b9d9e478b76309f293265df3

  • SHA512

    623c4f7d83f6ff8c41a07a6b220e307a0d3e083e5b46f40661331758411eeed5761a5ef1ee2ba3a8ad2d67790d2e515a72cb0d855f9e25ca4216f92b66fe65d6

  • SSDEEP

    12288:6xn1BXbDf5Ss1Opjjy+MdMhzp4y9ms6JQywmr:ubFFOpXy+MRy9QQywmr

Malware Config

Extracted

Family

emotet

Botnet

Epoch1

C2

24.249.135.121:80

185.94.252.13:443

149.62.173.247:8080

50.28.51.143:8080

80.249.176.206:80

5.196.35.138:7080

190.17.195.202:80

143.0.87.101:80

190.147.137.153:443

181.30.69.50:80

51.255.165.160:8080

190.96.118.251:443

72.47.248.48:7080

178.79.163.131:8080

212.231.60.98:80

187.162.248.237:80

2.47.112.152:80

68.183.190.199:8080

192.241.143.52:8080

77.55.211.77:8080

rsa_pubkey.plain

Targets

    • Target

      3e3bdd4d795ef301a7af4deb5665293941e22a72b9d9e478b76309f293265df3

    • Size

      892KB

    • MD5

      f801b1d41a5e4b14df15832f03b269d4

    • SHA1

      1982bb2c1f6c80193b0d1a765018e6beedde50fe

    • SHA256

      3e3bdd4d795ef301a7af4deb5665293941e22a72b9d9e478b76309f293265df3

    • SHA512

      623c4f7d83f6ff8c41a07a6b220e307a0d3e083e5b46f40661331758411eeed5761a5ef1ee2ba3a8ad2d67790d2e515a72cb0d855f9e25ca4216f92b66fe65d6

    • SSDEEP

      12288:6xn1BXbDf5Ss1Opjjy+MdMhzp4y9ms6JQywmr:ubFFOpXy+MRy9QQywmr

MITRE ATT&CK Enterprise v15

Tasks