emotet

General

Target

9fbb3d47c0eb7fed6608e37d71902c6a305f7500aaee5812f3bc4455b3007113N.exe
Size

581KB
Sample

241225-sc7mnswkaw
MD5

76b0219f28ff6e4c1ac30be99d3035d0
SHA1

6bab4778f05f7b9e6d74aafdaa134cb78cf78e2f
SHA256

9fbb3d47c0eb7fed6608e37d71902c6a305f7500aaee5812f3bc4455b3007113
SHA512

e668b59029bb9ec2b560a66a1e004c71ec2784c636f159b6935bed37df2f5384c84ffccf32f1bed1c00239defba21d1bf5d9f4802e7bccca6bb02f391f8ceccc
SSDEEP

12288:M9an1kT4VCclzX/m8qAOmhmd+oiCh1CbSeQVuFvnCcan:MoF/m8qAOcmd+LCXvRVu9nO

Score

10^/10

Malware Config

Extracted

Family

emotet

Botnet

Epoch5

C2

178.238.225.252:8080

139.196.72.155:8080

36.67.23.59:443

103.56.149.105:8080

37.44.244.177:8080

85.25.120.45:8080

202.134.4.210:7080

78.47.204.80:443

83.229.80.93:8080

93.104.209.107:8080

80.211.107.116:8080

165.22.254.236:8080

104.244.79.94:443

185.148.169.10:8080

190.145.8.4:443

175.126.176.79:8080

139.59.80.108:8080

188.165.79.151:443

128.199.217.206:443

64.227.55.231:8080

ecs1.plain

eck1.plain

Targets

- Target
  
  9fbb3d47c0eb7fed6608e37d71902c6a305f7500aaee5812f3bc4455b3007113N.exe
- Size
  
  581KB
- MD5
  
  76b0219f28ff6e4c1ac30be99d3035d0
- SHA1
  
  6bab4778f05f7b9e6d74aafdaa134cb78cf78e2f
- SHA256
  
  9fbb3d47c0eb7fed6608e37d71902c6a305f7500aaee5812f3bc4455b3007113
- SHA512
  
  e668b59029bb9ec2b560a66a1e004c71ec2784c636f159b6935bed37df2f5384c84ffccf32f1bed1c00239defba21d1bf5d9f4802e7bccca6bb02f391f8ceccc
- SSDEEP
  
  12288:M9an1kT4VCclzX/m8qAOmhmd+oiCh1CbSeQVuFvnCcan:MoF/m8qAOcmd+LCXvRVu9nO
Score

10^/10

emotet epoch5 banker trojan
- Emotet
  Emotet is a trojan that is primarily spread through spam emails.
  trojan banker emotet
- Emotet family
  emotet
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

Sharing

General

Malware Config

Extracted

Targets

Emotet family

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2