emotet

General

Target

5057b00ff913d858ded5a48a005eef48b2d778452d6fffdf64e32b62ff59b689
Size

745KB
Sample

241120-y5f83sxkgq
MD5

bdd23e1f63ef661058ae23dcd499ac6d
SHA1

af0e2e68c85308b5bf878b8d035f524a9467c4ab
SHA256

5057b00ff913d858ded5a48a005eef48b2d778452d6fffdf64e32b62ff59b689
SHA512

457b5e4c25e46b18e0586637d3619f8251d511d5fd22669c6b7fc9bdeb529f925d64d9d083724b35aa7e4b42b521696c0a509e23b56e27dc0cb70ad8aec837ce
SSDEEP

12288:2pFqjrndvdv8yPUBOGuEc54GbOXqqJD2uXyZrxkAGkv2xN71WTxv:2pF2jdx8J654GbOXqfPBmN4TF

Score

10^/10

Malware Config

Extracted

Family

emotet

Botnet

Epoch4

C2

172.104.227.98:443

31.207.89.74:8080

46.55.222.11:443

41.76.108.46:8080

103.8.26.103:8080

185.184.25.237:8080

103.8.26.102:8080

203.114.109.124:443

45.118.115.99:8080

178.79.147.66:8080

58.227.42.236:80

45.118.135.203:7080

103.75.201.2:443

195.154.133.20:443

192.254.71.210:443

45.142.114.231:8080

212.237.5.209:443

207.38.84.195:8080

104.251.214.46:8080

212.237.17.99:8080

eck1.plain

ecs1.plain

Targets

- Target
  
  5057b00ff913d858ded5a48a005eef48b2d778452d6fffdf64e32b62ff59b689
- Size
  
  745KB
- MD5
  
  bdd23e1f63ef661058ae23dcd499ac6d
- SHA1
  
  af0e2e68c85308b5bf878b8d035f524a9467c4ab
- SHA256
  
  5057b00ff913d858ded5a48a005eef48b2d778452d6fffdf64e32b62ff59b689
- SHA512
  
  457b5e4c25e46b18e0586637d3619f8251d511d5fd22669c6b7fc9bdeb529f925d64d9d083724b35aa7e4b42b521696c0a509e23b56e27dc0cb70ad8aec837ce
- SSDEEP
  
  12288:2pFqjrndvdv8yPUBOGuEc54GbOXqqJD2uXyZrxkAGkv2xN71WTxv:2pF2jdx8J654GbOXqfPBmN4TF
Score

10^/10

emotet epoch4 banker discovery trojan
- Emotet
  Emotet is a trojan that is primarily spread through spam emails.
  trojan banker emotet
- Emotet family
  emotet
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

Emotet family

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2