General
-
Target
87211680dc98390760b9a867a57ccf0dcbeda9d76a29923eba81dd0a52a27db0
-
Size
372KB
-
Sample
241120-3frezavhje
-
MD5
800268b07c1bb41811db51617b3e631e
-
SHA1
7136fc9801e10142aad9926b6c92f96b97b3206d
-
SHA256
87211680dc98390760b9a867a57ccf0dcbeda9d76a29923eba81dd0a52a27db0
-
SHA512
75dc5ad06578eb609a2079545296c9149bcd777354027c299e23b41651abe8989fbbc566000b20c7821910b7091782291385d8f98590839ae5749ccac72a2ec2
-
SSDEEP
6144:Lw6KjnnTFBAiDj+0fTkSGiurL1+scETSURw5pEbtub:mtBRDj+0rkThWKI5pEo
Malware Config
Extracted
emotet
Epoch2
174.102.48.180:80
88.217.172.164:443
51.75.33.120:8080
62.138.26.28:8080
169.239.182.217:8080
114.146.222.200:80
116.203.32.252:8080
103.86.49.11:8080
74.120.55.163:80
41.60.200.34:80
209.182.216.177:443
157.245.99.39:8080
87.106.139.101:8080
152.168.248.128:443
104.236.246.93:8080
47.144.21.12:443
139.130.242.43:80
181.230.116.163:80
72.12.127.184:443
61.19.246.238:443
Targets
-
-
Target
87211680dc98390760b9a867a57ccf0dcbeda9d76a29923eba81dd0a52a27db0
-
Size
372KB
-
MD5
800268b07c1bb41811db51617b3e631e
-
SHA1
7136fc9801e10142aad9926b6c92f96b97b3206d
-
SHA256
87211680dc98390760b9a867a57ccf0dcbeda9d76a29923eba81dd0a52a27db0
-
SHA512
75dc5ad06578eb609a2079545296c9149bcd777354027c299e23b41651abe8989fbbc566000b20c7821910b7091782291385d8f98590839ae5749ccac72a2ec2
-
SSDEEP
6144:Lw6KjnnTFBAiDj+0fTkSGiurL1+scETSURw5pEbtub:mtBRDj+0rkThWKI5pEo
Score10/10-
Emotet
Emotet is a trojan that is primarily spread through spam emails.
-
Emotet family
-
Emotet payload
Detects Emotet payload in memory.
-