emotet

General

Target

44e648d90e6c3d3d1eb5a1f32dc8ed7fb7a5229d1318fb06c845af9b5d7efe95
Size

596KB
Sample

241120-2xshxswcpj
MD5

05ae3e8797a0981495dfd5a7adb0db24
SHA1

c662a198eaed278d08006535415102af2202a489
SHA256

44e648d90e6c3d3d1eb5a1f32dc8ed7fb7a5229d1318fb06c845af9b5d7efe95
SHA512

fa4bd2aaf4de7ac34cc88bc44e24816a0331cfa62f650e1207e1c0c5618168afefe70a2c674dcf7208e0ba3c23507b7189185e928fbc3f4fda9c8e9d31a5d927
SSDEEP

6144:8B4oWMvCBs0YaUG7qJFzR4Dpw0yHz4MmGOfg54hOSRhnID3FQizX5+IgtidXX5+o:8uLMviuaUsqTd45yHz4MmG/STe5

Score

10^/10

Malware Config

Extracted

Family

emotet

Botnet

Epoch5

C2

185.244.166.137:443

185.168.130.138:443

59.148.253.194:443

78.46.73.125:443

195.77.239.39:8080

104.131.62.48:8080

69.16.218.101:8080

203.153.216.46:443

195.154.146.35:443

190.90.233.66:443

191.252.103.16:80

37.44.244.177:8080

168.197.250.14:80

116.124.128.206:8080

54.37.228.122:443

159.69.237.188:443

85.214.67.203:8080

210.57.209.142:8080

78.47.204.80:443

185.148.168.220:8080

eck1.plain

ecs1.plain

Targets

- Target
  
  44e648d90e6c3d3d1eb5a1f32dc8ed7fb7a5229d1318fb06c845af9b5d7efe95
- Size
  
  596KB
- MD5
  
  05ae3e8797a0981495dfd5a7adb0db24
- SHA1
  
  c662a198eaed278d08006535415102af2202a489
- SHA256
  
  44e648d90e6c3d3d1eb5a1f32dc8ed7fb7a5229d1318fb06c845af9b5d7efe95
- SHA512
  
  fa4bd2aaf4de7ac34cc88bc44e24816a0331cfa62f650e1207e1c0c5618168afefe70a2c674dcf7208e0ba3c23507b7189185e928fbc3f4fda9c8e9d31a5d927
- SSDEEP
  
  6144:8B4oWMvCBs0YaUG7qJFzR4Dpw0yHz4MmGOfg54hOSRhnID3FQizX5+IgtidXX5+o:8uLMviuaUsqTd45yHz4MmG/STe5
Score

10^/10

emotet epoch5 banker discovery trojan
- Emotet
  Emotet is a trojan that is primarily spread through spam emails.
  trojan banker emotet
- Emotet family
  emotet
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

Emotet family

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2