General

  • Target

    ba91588fab36be9eb737cf468682597a0c5deae02ead6cbfa3fc7a36b8516d4c

  • Size

    846KB

  • Sample

    241120-wt52ys1jf1

  • MD5

    22c9d783b83127311b6e3e08f7493759

  • SHA1

    5a366d996e139d5a6ee17dffddc4c8793244dc17

  • SHA256

    ba91588fab36be9eb737cf468682597a0c5deae02ead6cbfa3fc7a36b8516d4c

  • SHA512

    d547eb0f166c1d5fa73fa424e8ab3d234cd97debd70724a43ded10338c5eac6b231ec5e2a443bab24eef13fc238240bbca31d6e5e62e1a25af383b7f29a4fe2c

  • SSDEEP

    24576:sPMTg9U3G0ISDKvSeqfZaePWAy7UmpE3:BTg9UXRD2SeqfZZiYm

Malware Config

Extracted

Family

emotet

Botnet

Epoch5

C2

207.148.81.119:8080

159.69.237.188:443

103.8.26.17:8080

194.9.172.107:8080

188.225.32.231:4143

103.56.149.105:8080

139.196.72.155:8080

190.90.233.66:443

37.59.209.141:8080

217.182.143.207:443

78.46.73.125:443

78.47.204.80:443

116.124.128.206:8080

45.71.195.104:8080

87.106.97.83:7080

178.62.112.199:8080

175.126.176.79:8080

134.122.119.23:8080

51.68.141.164:8080

203.153.216.46:443

ecs1.plain
eck1.plain

Targets

    • Target

      ba91588fab36be9eb737cf468682597a0c5deae02ead6cbfa3fc7a36b8516d4c

    • Size

      846KB

    • MD5

      22c9d783b83127311b6e3e08f7493759

    • SHA1

      5a366d996e139d5a6ee17dffddc4c8793244dc17

    • SHA256

      ba91588fab36be9eb737cf468682597a0c5deae02ead6cbfa3fc7a36b8516d4c

    • SHA512

      d547eb0f166c1d5fa73fa424e8ab3d234cd97debd70724a43ded10338c5eac6b231ec5e2a443bab24eef13fc238240bbca31d6e5e62e1a25af383b7f29a4fe2c

    • SSDEEP

      24576:sPMTg9U3G0ISDKvSeqfZaePWAy7UmpE3:BTg9UXRD2SeqfZZiYm

MITRE ATT&CK Matrix

Tasks