emotet

General

Target

264deb435d5a592197fab3042324ac8c2ea8cf44088a6da89b6ad2e8116aaa8b
Size

764KB
Sample

241120-z95b5stbnb
MD5

b8a4715b0df9edf3d618158bf5f05685
SHA1

5f0c4ffd684ea018a612bd8586955c5b1fc5296e
SHA256

264deb435d5a592197fab3042324ac8c2ea8cf44088a6da89b6ad2e8116aaa8b
SHA512

c065de52b98a9e0b1ee63a38208685262da2d652f3260f4263aaff22511d438e48750d1f9f22331fb0d396d027621dd552dbf858e3f238627c536336b73d86a1
SSDEEP

12288:e1NKDzZKRpnBlD7MGVrdjF3hRcTsApSvHQdOzyK7zjwOjmSNjNwgraKRT61cKGNx:S4DzZKnH4ARGY61WN+

Score

10^/10

Malware Config

Extracted

Family

emotet

Botnet

Epoch4

C2

209.250.246.206:443

110.232.117.186:8080

164.68.99.3:8080

119.193.124.41:7080

212.237.17.99:8080

107.182.225.142:8080

185.8.212.130:7080

153.126.146.25:7080

77.81.247.144:8080

209.126.98.206:8080

201.94.166.162:443

131.100.24.231:80

45.235.8.30:8080

213.241.20.155:443

103.43.46.182:443

129.232.188.93:443

103.132.242.26:8080

151.106.112.196:8080

45.118.115.99:8080

185.4.135.165:8080

ecs1.plain

eck1.plain

Targets

- Target
  
  264deb435d5a592197fab3042324ac8c2ea8cf44088a6da89b6ad2e8116aaa8b
- Size
  
  764KB
- MD5
  
  b8a4715b0df9edf3d618158bf5f05685
- SHA1
  
  5f0c4ffd684ea018a612bd8586955c5b1fc5296e
- SHA256
  
  264deb435d5a592197fab3042324ac8c2ea8cf44088a6da89b6ad2e8116aaa8b
- SHA512
  
  c065de52b98a9e0b1ee63a38208685262da2d652f3260f4263aaff22511d438e48750d1f9f22331fb0d396d027621dd552dbf858e3f238627c536336b73d86a1
- SSDEEP
  
  12288:e1NKDzZKRpnBlD7MGVrdjF3hRcTsApSvHQdOzyK7zjwOjmSNjNwgraKRT61cKGNx:S4DzZKnH4ARGY61WN+
Score

10^/10

emotet epoch4 banker trojan
- Emotet
  Emotet is a trojan that is primarily spread through spam emails.
  trojan banker emotet
- Emotet family
  emotet
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

Sharing

General

Malware Config

Extracted

Targets

Emotet family

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2