emotet

General

Target

94b69248663fcf23ca148082cbc7fe8c0d46c1df2b1c25feed10f363f3f42d34
Size

624KB
Sample

241120-2nkfysvncx
MD5

fe84c9b6637d74c614b50ff8b5cb2543
SHA1

1cf07267867ef05d9d3fd5fd385bba395c4b45dd
SHA256

94b69248663fcf23ca148082cbc7fe8c0d46c1df2b1c25feed10f363f3f42d34
SHA512

ef3bd00726d6d01ab4eea9c7059cd4e7492db980c44facdfc982e740403c99bcd6f8063b2d2b76b8559e43842f6159344a332164254abef6389b84ad5510ab77
SSDEEP

12288:Td0saabmsb61ZuV3ZGuyfEgXkvPLEbsWrxD8iP29pi9NwG1DjsgqXXvhhcwEPwqh:68mi61ZuRZGuyfEgXkvPLEbsODYDqVnm

Score

10^/10

Malware Config

Extracted

Family

emotet

Botnet

Epoch4

C2

131.100.24.231:80

209.59.138.75:7080

103.8.26.103:8080

51.38.71.0:443

212.237.17.99:8080

79.172.212.216:8080

207.38.84.195:8080

104.168.155.129:8080

178.79.147.66:8080

46.55.222.11:443

103.8.26.102:8080

192.254.71.210:443

45.176.232.124:443

203.114.109.124:443

51.68.175.8:8080

58.227.42.236:80

45.142.114.231:8080

217.182.143.207:443

178.63.25.185:443

45.118.115.99:8080

eck1.plain

ecs1.plain

Targets

- Target
  
  94b69248663fcf23ca148082cbc7fe8c0d46c1df2b1c25feed10f363f3f42d34
- Size
  
  624KB
- MD5
  
  fe84c9b6637d74c614b50ff8b5cb2543
- SHA1
  
  1cf07267867ef05d9d3fd5fd385bba395c4b45dd
- SHA256
  
  94b69248663fcf23ca148082cbc7fe8c0d46c1df2b1c25feed10f363f3f42d34
- SHA512
  
  ef3bd00726d6d01ab4eea9c7059cd4e7492db980c44facdfc982e740403c99bcd6f8063b2d2b76b8559e43842f6159344a332164254abef6389b84ad5510ab77
- SSDEEP
  
  12288:Td0saabmsb61ZuV3ZGuyfEgXkvPLEbsWrxD8iP29pi9NwG1DjsgqXXvhhcwEPwqh:68mi61ZuRZGuyfEgXkvPLEbsODYDqVnm
Score

10^/10

emotet epoch4 banker discovery trojan
- Emotet
  Emotet is a trojan that is primarily spread through spam emails.
  trojan banker emotet
- Emotet family
  emotet
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

Emotet family

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2