General

  • Target

    b5605035aec381d8247eb8de475be218f30634b98a7be923f8773419d56da5df

  • Size

    424KB

  • Sample

    241113-wa5xvazkgm

  • MD5

    51f1a0fe9cff9a7615cf75ab2f5060ea

  • SHA1

    1b60721f6a1e8d49df0b5f6758d67ede38a9c4bc

  • SHA256

    b5605035aec381d8247eb8de475be218f30634b98a7be923f8773419d56da5df

  • SHA512

    0661da84cd9f4307764e0d3f76db55a7c5508137c74f31e82c3e4e860f243b991d22e97ab4689bd4343b7a2e3417f6d9d928e497047cae0fc2c67b3096321da9

  • SSDEEP

    6144:x1GLgYu3b3rOm/cLt6nDSfn9i7R4Qmi0dync8K2ArReGTPcBDJ:x1GLgYu3b7O7fnQ7R4TjhrZTP0

Malware Config

Extracted

Family

emotet

Botnet

Epoch1

C2

181.30.69.50:80

157.7.199.53:8080

190.163.1.31:8080

68.183.170.114:8080

192.241.143.52:8080

192.241.146.84:8080

46.214.11.172:80

61.92.159.208:8080

104.131.41.185:8080

137.74.106.111:7080

5.196.35.138:7080

89.32.150.160:8080

177.144.135.2:80

190.194.242.254:443

217.199.160.224:7080

83.169.21.32:7080

190.17.195.202:80

111.67.12.221:8080

177.66.190.130:80

186.70.127.199:8090

rsa_pubkey.plain

Targets

    • Target

      b5605035aec381d8247eb8de475be218f30634b98a7be923f8773419d56da5df

    • Size

      424KB

    • MD5

      51f1a0fe9cff9a7615cf75ab2f5060ea

    • SHA1

      1b60721f6a1e8d49df0b5f6758d67ede38a9c4bc

    • SHA256

      b5605035aec381d8247eb8de475be218f30634b98a7be923f8773419d56da5df

    • SHA512

      0661da84cd9f4307764e0d3f76db55a7c5508137c74f31e82c3e4e860f243b991d22e97ab4689bd4343b7a2e3417f6d9d928e497047cae0fc2c67b3096321da9

    • SSDEEP

      6144:x1GLgYu3b3rOm/cLt6nDSfn9i7R4Qmi0dync8K2ArReGTPcBDJ:x1GLgYu3b7O7fnQ7R4TjhrZTP0

MITRE ATT&CK Enterprise v15

Tasks