emotet

General

Target

9c4ea065ab5b663928f9b241a1ca5347dec6339bff88c15b76c7862df3521207
Size

362KB
Sample

241120-1aw26aykdk
MD5

c79b1761d940d106821aefa2fc82e9d8
SHA1

bba519b67a89d28f69104b497a2372206318e24c
SHA256

9c4ea065ab5b663928f9b241a1ca5347dec6339bff88c15b76c7862df3521207
SHA512

366923886d52a1d8e722f3b0d046916feb1a37cc4e8569f53e0675207d229c86ef17e6dd3200c9e75418dddb221f314201f454384638ccc34b856f38962652f6
SSDEEP

6144:hlNuuXQASByX7YxoJcXy16qFHJ7wwD1w3pq6jTK/V9OT0u:hlNu9ASByX7Qy/BJ7rGTK/V3

Score

10^/10

Malware Config

Extracted

Family

emotet

Botnet

Epoch5

C2

194.9.172.107:8080

66.42.57.149:443

165.22.73.229:8080

202.29.239.162:443

104.248.225.227:8080

54.38.242.185:443

103.133.214.242:8080

78.47.204.80:443

210.57.209.142:8080

103.41.204.169:8080

118.98.72.86:443

88.217.172.165:8080

87.106.97.83:7080

85.25.120.45:8080

195.77.239.39:8080

37.44.244.177:8080

36.67.23.59:443

160.16.143.191:7080

54.38.143.246:7080

159.69.237.188:443

ecs1.plain

eck1.plain

Targets

- Target
  
  9c4ea065ab5b663928f9b241a1ca5347dec6339bff88c15b76c7862df3521207
- Size
  
  362KB
- MD5
  
  c79b1761d940d106821aefa2fc82e9d8
- SHA1
  
  bba519b67a89d28f69104b497a2372206318e24c
- SHA256
  
  9c4ea065ab5b663928f9b241a1ca5347dec6339bff88c15b76c7862df3521207
- SHA512
  
  366923886d52a1d8e722f3b0d046916feb1a37cc4e8569f53e0675207d229c86ef17e6dd3200c9e75418dddb221f314201f454384638ccc34b856f38962652f6
- SSDEEP
  
  6144:hlNuuXQASByX7YxoJcXy16qFHJ7wwD1w3pq6jTK/V9OT0u:hlNu9ASByX7Qy/BJ7rGTK/V3
Score

10^/10

emotet epoch5 banker trojan
- Emotet
  Emotet is a trojan that is primarily spread through spam emails.
  trojan banker emotet
- Emotet family
  emotet
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

Sharing

General

Malware Config

Extracted

Targets

Emotet family

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2