General

  • Target

    65fd241e717c262a22dd48a74029fa834be2e7f60531493f7fa9aa80ea4e27f3

  • Size

    364KB

  • Sample

    241120-wp4ckavpdp

  • MD5

    cf0ee4f2b82a1acc36e2f4e3ab8919c0

  • SHA1

    0346459eafc4cb3c28cbb6628b630de21f463fec

  • SHA256

    65fd241e717c262a22dd48a74029fa834be2e7f60531493f7fa9aa80ea4e27f3

  • SHA512

    69066548c922d3d72116a9a81547a51521599a105e9be95829a35204ab72a267043ca50eaa99e2d174444e488a6a9fd38e081ece94c9402c87417f582a9814a3

  • SSDEEP

    6144:EbmRW/X22TR72tKbxGeykesyj1BQr6blJLUDblVpM54WWBKWuSIZ5ib0wj:E42Gi7/ypRBQrgI5M54riZYbf

Malware Config

Extracted

Family

emotet

Botnet

Epoch5

C2

93.104.209.107:8080

195.154.146.35:443

202.134.4.210:7080

185.148.168.220:8080

68.183.93.250:443

175.126.176.79:8080

203.153.216.46:443

202.28.34.99:8080

210.57.209.142:8080

36.67.23.59:443

159.69.237.188:443

207.148.81.119:8080

54.38.143.246:7080

45.71.195.104:8080

103.56.149.105:8080

78.46.73.125:443

85.214.67.203:8080

66.42.57.149:443

51.68.141.164:8080

54.37.106.167:8080

ecs1.plain
eck1.plain

Targets

    • Target

      65fd241e717c262a22dd48a74029fa834be2e7f60531493f7fa9aa80ea4e27f3

    • Size

      364KB

    • MD5

      cf0ee4f2b82a1acc36e2f4e3ab8919c0

    • SHA1

      0346459eafc4cb3c28cbb6628b630de21f463fec

    • SHA256

      65fd241e717c262a22dd48a74029fa834be2e7f60531493f7fa9aa80ea4e27f3

    • SHA512

      69066548c922d3d72116a9a81547a51521599a105e9be95829a35204ab72a267043ca50eaa99e2d174444e488a6a9fd38e081ece94c9402c87417f582a9814a3

    • SSDEEP

      6144:EbmRW/X22TR72tKbxGeykesyj1BQr6blJLUDblVpM54WWBKWuSIZ5ib0wj:E42Gi7/ypRBQrgI5M54riZYbf

MITRE ATT&CK Matrix

Tasks