emotet

General

Target

a7cc63647c04f20dbe3d83962d6ecef40a0ac2bac37bd12c86079923812e0ecb
Size

578KB
Sample

241120-xxb4qa1eme
MD5

f86010aa254db7423ae082e9e4c3f9f1
SHA1

1bc97cc7cbc7dfcc57fdb74ff3e39212c011d6ca
SHA256

a7cc63647c04f20dbe3d83962d6ecef40a0ac2bac37bd12c86079923812e0ecb
SHA512

543645885f0128bde668a21b44e5385d898b6ef9704b5c6d542c1134162c35d84363c1a5d9726eedc0c6445fb2865d706feece91a9555ef716023666dd55f785
SSDEEP

12288:gwtccwVfQec59aEilIc5rmNLm2O1uDnFyXRm6ZM7XNBWxXjiSnD5ANR+a7:HtccwM59aErmFEFyhmFTNBWxziS+NR1

Score

10^/10

Malware Config

Extracted

Family

emotet

Botnet

Epoch4

C2

164.68.99.3:8080

146.59.226.45:443

51.91.76.89:8080

209.97.163.214:443

158.69.222.101:443

82.165.152.127:8080

103.70.28.102:8080

72.15.201.15:8080

150.95.66.124:8080

45.176.232.124:443

82.223.21.224:8080

107.170.39.149:8080

160.16.142.56:8080

103.132.242.26:8080

153.126.146.25:7080

213.241.20.155:443

1.234.21.73:7080

197.242.150.244:8080

188.44.20.25:443

196.218.30.83:443

ecs1.plain

eck1.plain

Targets

- Target
  
  a7cc63647c04f20dbe3d83962d6ecef40a0ac2bac37bd12c86079923812e0ecb
- Size
  
  578KB
- MD5
  
  f86010aa254db7423ae082e9e4c3f9f1
- SHA1
  
  1bc97cc7cbc7dfcc57fdb74ff3e39212c011d6ca
- SHA256
  
  a7cc63647c04f20dbe3d83962d6ecef40a0ac2bac37bd12c86079923812e0ecb
- SHA512
  
  543645885f0128bde668a21b44e5385d898b6ef9704b5c6d542c1134162c35d84363c1a5d9726eedc0c6445fb2865d706feece91a9555ef716023666dd55f785
- SSDEEP
  
  12288:gwtccwVfQec59aEilIc5rmNLm2O1uDnFyXRm6ZM7XNBWxXjiSnD5ANR+a7:HtccwM59aErmFEFyhmFTNBWxziS+NR1
Score

10^/10

emotet epoch4 banker trojan
- Emotet
  Emotet is a trojan that is primarily spread through spam emails.
  trojan banker emotet
- Emotet family
  emotet
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

Sharing

General

Malware Config

Extracted

Targets

Emotet family

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2