emotet

General

Target

444b4a6b6df420050710d264533b35cf1401e12da84e29b7d6e1a878cbbdabf3
Size

413KB
Sample

241120-y2maxstapl
MD5

83a3ce50f468058bcf7fb7dbd2c461be
SHA1

ae53347b737544af46e63507b9c0c10603502d90
SHA256

444b4a6b6df420050710d264533b35cf1401e12da84e29b7d6e1a878cbbdabf3
SHA512

cb11ebbfa475c6d660d698bebc05ed9052610ef52dd167a41464433a49282000e393bcc7dcaa3bda19a7f2c6d646db711a181136e20a7c0dcea041da34c4610d
SSDEEP

6144:b8OPcQEP/iCaOkKOrjLC43u48PrkFsjiUnyi+u54vIknUGhwG/K6786TEnCAIpiG:b8ScQEPKCr/O2W4Ssj+u54wMbGg

Score

10^/10

Malware Config

Extracted

Family

emotet

Botnet

Epoch4

C2

131.100.24.231:80

209.59.138.75:7080

103.8.26.102:8080

178.79.147.66:8080

51.38.71.0:443

79.172.212.216:8080

162.214.50.39:7080

203.114.109.124:443

45.142.114.231:8080

212.237.5.209:443

104.251.214.46:8080

212.237.56.116:7080

107.182.225.142:8080

104.168.155.129:8080

138.185.72.26:8080

45.118.135.203:7080

216.158.226.206:443

103.75.201.2:443

158.69.222.101:443

178.63.25.185:443

eck1.plain

ecs1.plain

Targets

- Target
  
  444b4a6b6df420050710d264533b35cf1401e12da84e29b7d6e1a878cbbdabf3
- Size
  
  413KB
- MD5
  
  83a3ce50f468058bcf7fb7dbd2c461be
- SHA1
  
  ae53347b737544af46e63507b9c0c10603502d90
- SHA256
  
  444b4a6b6df420050710d264533b35cf1401e12da84e29b7d6e1a878cbbdabf3
- SHA512
  
  cb11ebbfa475c6d660d698bebc05ed9052610ef52dd167a41464433a49282000e393bcc7dcaa3bda19a7f2c6d646db711a181136e20a7c0dcea041da34c4610d
- SSDEEP
  
  6144:b8OPcQEP/iCaOkKOrjLC43u48PrkFsjiUnyi+u54vIknUGhwG/K6786TEnCAIpiG:b8ScQEPKCr/O2W4Ssj+u54wMbGg
Score

10^/10

emotet epoch4 banker discovery trojan
- Emotet
  Emotet is a trojan that is primarily spread through spam emails.
  trojan banker emotet
- Emotet family
  emotet
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

Emotet family

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2