emotet

General

Target

f05991e90b2c58495a260f541ca24e5087cb1ce309b68687c5eea94822ff80c7.exe
Size

763KB
Sample

241124-ms2tgaskak
MD5

97a86da05f53c5ec1ff151125471cca7
SHA1

b9de93ef6eec6e290fe5da56a0699360e3de2e16
SHA256

f05991e90b2c58495a260f541ca24e5087cb1ce309b68687c5eea94822ff80c7
SHA512

70630e7d0406e81bf45871eba6a2d770328540a09d65bb3f8d04afbdb03afafe72f2e225da68799f47c949f783553390355ea154ecb000c831ad68c4a9ea12d0
SSDEEP

12288:9YQ56uUa4e8oAWzvqQ+fpnkDo0T5iWry2NDwLwsN0Cxy3:9r56uB5PAWbG70T5iW2mcLwsN0Cx0

Score

10^/10

Malware Config

Extracted

Family

emotet

Botnet

Epoch5

C2

207.148.81.119:8080

159.69.237.188:443

103.8.26.17:8080

194.9.172.107:8080

188.225.32.231:4143

103.56.149.105:8080

139.196.72.155:8080

190.90.233.66:443

37.59.209.141:8080

217.182.143.207:443

78.46.73.125:443

78.47.204.80:443

116.124.128.206:8080

45.71.195.104:8080

87.106.97.83:7080

178.62.112.199:8080

175.126.176.79:8080

134.122.119.23:8080

51.68.141.164:8080

203.153.216.46:443

ecs1.plain

eck1.plain

Targets

- Target
  
  f05991e90b2c58495a260f541ca24e5087cb1ce309b68687c5eea94822ff80c7.exe
- Size
  
  763KB
- MD5
  
  97a86da05f53c5ec1ff151125471cca7
- SHA1
  
  b9de93ef6eec6e290fe5da56a0699360e3de2e16
- SHA256
  
  f05991e90b2c58495a260f541ca24e5087cb1ce309b68687c5eea94822ff80c7
- SHA512
  
  70630e7d0406e81bf45871eba6a2d770328540a09d65bb3f8d04afbdb03afafe72f2e225da68799f47c949f783553390355ea154ecb000c831ad68c4a9ea12d0
- SSDEEP
  
  12288:9YQ56uUa4e8oAWzvqQ+fpnkDo0T5iWry2NDwLwsN0Cxy3:9r56uB5PAWbG70T5iW2mcLwsN0Cx0
Score

10^/10

emotet epoch5 banker trojan
- Emotet
  Emotet is a trojan that is primarily spread through spam emails.
  trojan banker emotet
- Emotet family
  emotet
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

Sharing

General

Malware Config

Extracted

Targets

Emotet family

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2