General
-
Target
f6a018f262150d26d4c861dc41536d9256e63252597fc23aaf2a614e031b080f
-
Size
373KB
-
Sample
241121-app92swqbx
-
MD5
0f1b27285220a2f3bad0f31cf16d9174
-
SHA1
63875b13296be37194791029f69f5133ccc10f74
-
SHA256
f6a018f262150d26d4c861dc41536d9256e63252597fc23aaf2a614e031b080f
-
SHA512
08916e8a3bf5dad570bc9df402f936d36b967e634fe1b8fa7b59366c38bd5915225ee0565967c5f25f2faf035dd9bdf840016205cb3037a76fb89f1aa5ea99ed
-
SSDEEP
6144:8gi9GB4O2e1C7jy1NNNbyOC0abEPMXFUkiB3+qW8gdAi2yBL:8g2MC61rNyOmEPMXKN3+qWvdAeBL
Malware Config
Extracted
emotet
Epoch2
208.180.207.205:80
167.114.153.111:8080
169.50.76.149:8080
87.106.136.232:8080
134.209.36.254:8080
110.145.77.103:80
61.19.246.238:443
218.147.193.146:80
194.4.58.192:7080
123.176.25.234:80
139.99.158.11:443
174.106.122.139:80
137.59.187.107:8080
37.187.72.193:8080
168.235.67.138:7080
190.108.228.27:443
139.59.60.244:8080
184.180.181.202:80
71.72.196.159:80
47.144.21.12:443
Targets
-
-
Target
f6a018f262150d26d4c861dc41536d9256e63252597fc23aaf2a614e031b080f
-
Size
373KB
-
MD5
0f1b27285220a2f3bad0f31cf16d9174
-
SHA1
63875b13296be37194791029f69f5133ccc10f74
-
SHA256
f6a018f262150d26d4c861dc41536d9256e63252597fc23aaf2a614e031b080f
-
SHA512
08916e8a3bf5dad570bc9df402f936d36b967e634fe1b8fa7b59366c38bd5915225ee0565967c5f25f2faf035dd9bdf840016205cb3037a76fb89f1aa5ea99ed
-
SSDEEP
6144:8gi9GB4O2e1C7jy1NNNbyOC0abEPMXFUkiB3+qW8gdAi2yBL:8g2MC61rNyOmEPMXKN3+qWvdAeBL
Score10/10-
Emotet
Emotet is a trojan that is primarily spread through spam emails.
-
Emotet family
-
Emotet payload
Detects Emotet payload in memory.
-