emotet

General

Target

bd23d7ea4c814af04d3e6f77c8eb785fcbeaf1ee6af798aac8f1b7f168df984b
Size

176KB
Sample

241120-xplces1dld
MD5

8413c172dc2200a36802ed626b0999f8
SHA1

d4f257e753f2ff6b89c1433da7889ebd23c5ae5c
SHA256

bd23d7ea4c814af04d3e6f77c8eb785fcbeaf1ee6af798aac8f1b7f168df984b
SHA512

537e4eb76e26359e74f2144fdc648cab72b873170d2388f87640e0178936414ce2a4b18f8a7913eb64b58a70a4e04d34fa8903728d38ee8708d7d262b49c3896
SSDEEP

3072:VpjftMFs/tjHj5JsmWyeqzExHlsdPYbeIuUkNftScov+nMNfWsO:VRqi1/wm//KgWeIkGwCN

Score

10^/10

Malware Config

Extracted

Family

emotet

Botnet

Epoch4

C2

94.23.45.86:4143

129.232.188.93:443

213.241.20.155:443

197.242.150.244:8080

172.104.251.154:8080

46.55.222.11:443

82.223.21.224:8080

5.9.116.246:8080

1.234.2.232:8080

146.59.226.45:443

160.16.142.56:8080

115.68.227.76:8080

72.15.201.15:8080

188.44.20.25:443

185.4.135.165:8080

103.132.242.26:8080

173.212.193.249:8080

163.44.196.120:8080

183.111.227.137:8080

149.56.131.28:8080

eck1.plain

ecs1.plain

Targets

- Target
  
  bd23d7ea4c814af04d3e6f77c8eb785fcbeaf1ee6af798aac8f1b7f168df984b
- Size
  
  176KB
- MD5
  
  8413c172dc2200a36802ed626b0999f8
- SHA1
  
  d4f257e753f2ff6b89c1433da7889ebd23c5ae5c
- SHA256
  
  bd23d7ea4c814af04d3e6f77c8eb785fcbeaf1ee6af798aac8f1b7f168df984b
- SHA512
  
  537e4eb76e26359e74f2144fdc648cab72b873170d2388f87640e0178936414ce2a4b18f8a7913eb64b58a70a4e04d34fa8903728d38ee8708d7d262b49c3896
- SSDEEP
  
  3072:VpjftMFs/tjHj5JsmWyeqzExHlsdPYbeIuUkNftScov+nMNfWsO:VRqi1/wm//KgWeIkGwCN
Score

10^/10

emotet epoch4 banker trojan
- Emotet
  Emotet is a trojan that is primarily spread through spam emails.
  trojan banker emotet
- Emotet family
  emotet
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

Sharing

General

Malware Config

Extracted

Targets

Emotet family

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2