emotet

General

Target

2024-12-30_0ce438a596a3e15e6ee63a45549b164f_icedid
Size

804KB
Sample

241230-c8t4fsvqh1
MD5

0ce438a596a3e15e6ee63a45549b164f
SHA1

e6eac94ff925208cecb329017fba825640532ab4
SHA256

095c1963095ca5ece22a7d4a79015ea6a885c8860aef79837f6122b7f047ce38
SHA512

46ecd515496f3bb63a739e4f709e706bef36aa761442246c4ce797d64909961fdd9e5f3ff1e69c0732509d6bea764d05c3c5c75f41bcc349276c3c1f9310626f
SSDEEP

12288:cVZwHUBt3AsvzmSXwShQbBVOXsnTO44BFXZzDBQ5kSLyO8SbxXtBmHX:cVeUYEz3XwS2bBVzytDBQSO8SbxXtMX

Score

10^/10

Malware Config

Extracted

Family

emotet

Botnet

Epoch2

C2

142.105.151.124:443

95.216.118.202:8080

50.116.86.205:8080

93.51.50.171:8080

176.111.60.55:8080

169.239.182.217:8080

45.33.49.124:443

160.16.215.66:8080

201.173.217.124:443

162.154.38.103:80

186.208.123.210:443

162.241.92.219:8080

82.223.70.24:8080

23.92.16.164:8080

104.236.246.93:8080

92.222.216.44:8080

120.151.135.224:80

104.131.11.150:443

78.24.219.147:8080

62.75.187.192:8080

rsa_pubkey.plain

Targets

- Target
  
  2024-12-30_0ce438a596a3e15e6ee63a45549b164f_icedid
- Size
  
  804KB
- MD5
  
  0ce438a596a3e15e6ee63a45549b164f
- SHA1
  
  e6eac94ff925208cecb329017fba825640532ab4
- SHA256
  
  095c1963095ca5ece22a7d4a79015ea6a885c8860aef79837f6122b7f047ce38
- SHA512
  
  46ecd515496f3bb63a739e4f709e706bef36aa761442246c4ce797d64909961fdd9e5f3ff1e69c0732509d6bea764d05c3c5c75f41bcc349276c3c1f9310626f
- SSDEEP
  
  12288:cVZwHUBt3AsvzmSXwShQbBVOXsnTO44BFXZzDBQ5kSLyO8SbxXtBmHX:cVeUYEz3XwS2bBVzytDBQSO8SbxXtMX
Score

10^/10

emotet epoch2 banker discovery trojan
- Emotet
  Emotet is a trojan that is primarily spread through spam emails.
  trojan banker emotet
- Emotet family
  emotet
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

Emotet family

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2