emotet

General

Target

340b3ae42fc8b2182a4ec85608ea44e6c67fb4e8b40e456479d99695494185a5
Size

642KB
Sample

241120-wb6wjavmdk
MD5

53785db75c8e84dfa6106e1e6403f26b
SHA1

2148277994ad026afe5e3c60b36a006cf4f7d54e
SHA256

340b3ae42fc8b2182a4ec85608ea44e6c67fb4e8b40e456479d99695494185a5
SHA512

a90c4f69152dc87704506667bcd40d13825c1f79b0839ffb4399e73d2e74e9bc731ba10a69bbb678ad849d5b70a160ba13bff3c1c9c28d48589721bc6b005746
SSDEEP

12288:SKErLbWywuqBlzeWJsc4guGuLfGdM6AhPoTVHeo0Wq7giXg:SK8EuqLzeWeKupLuM6MwTfq7

Score

10^/10

Malware Config

Extracted

Family

emotet

Botnet

Epoch5

C2

45.138.98.34:80

69.16.218.101:8080

51.210.242.234:8080

185.148.168.220:8080

142.4.219.173:8080

54.38.242.185:443

191.252.103.16:80

104.131.62.48:8080

62.171.178.147:8080

217.182.143.207:443

168.197.250.14:80

37.44.244.177:8080

66.42.57.149:443

210.57.209.142:8080

159.69.237.188:443

116.124.128.206:8080

128.199.192.135:8080

195.154.146.35:443

185.148.168.15:8080

195.77.239.39:8080

eck1.plain

ecs1.plain

Targets

- Target
  
  340b3ae42fc8b2182a4ec85608ea44e6c67fb4e8b40e456479d99695494185a5
- Size
  
  642KB
- MD5
  
  53785db75c8e84dfa6106e1e6403f26b
- SHA1
  
  2148277994ad026afe5e3c60b36a006cf4f7d54e
- SHA256
  
  340b3ae42fc8b2182a4ec85608ea44e6c67fb4e8b40e456479d99695494185a5
- SHA512
  
  a90c4f69152dc87704506667bcd40d13825c1f79b0839ffb4399e73d2e74e9bc731ba10a69bbb678ad849d5b70a160ba13bff3c1c9c28d48589721bc6b005746
- SSDEEP
  
  12288:SKErLbWywuqBlzeWJsc4guGuLfGdM6AhPoTVHeo0Wq7giXg:SK8EuqLzeWeKupLuM6MwTfq7
Score

10^/10

emotet epoch5 banker discovery trojan
- Emotet
  Emotet is a trojan that is primarily spread through spam emails.
  trojan banker emotet
- Emotet family
  emotet
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

Emotet family

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2