emotet

General

Target

2025-01-28_9bb221e1b901410f40b490690cd4f86b_icedid
Size

296KB
Sample

250128-x7bkyayqcz
MD5

9bb221e1b901410f40b490690cd4f86b
SHA1

ccdd17e8d34d901e8ac33dee2396a1315e019a7c
SHA256

9cd73ec22b6227b173d2b0ee7e2202e9640297d49e406649a73d86624fbe3362
SHA512

a6fc53ec5d4405148ed228c12de717d903b8fbc711061ba1f88a1d0528bdf94f155676d4688d7036d258818126a5a2ba59fdc1df2c55e4ca8774c1556f2396f3
SSDEEP

6144:IcI/ffwfSy3v0nVjvgiFJkDnKafopXm6UD:Icof4fSEOVb3JIf7Z

Score

10^/10

Malware Config

Extracted

Family

emotet

Botnet

Epoch1

C2

152.170.196.157:443

103.31.232.93:443

200.123.183.137:443

201.213.100.141:8080

70.32.115.157:8080

164.77.130.222:80

203.25.159.3:8080

184.57.130.8:80

190.147.137.153:443

91.83.93.124:7080

217.199.160.224:8080

190.57.130.142:443

185.94.252.12:80

77.55.211.77:8080

111.67.12.221:8080

5.45.108.146:8080

73.155.126.84:80

212.71.237.140:8080

5.196.35.138:7080

188.129.197.149:80

rsa_pubkey.plain

Targets

- Target
  
  2025-01-28_9bb221e1b901410f40b490690cd4f86b_icedid
- Size
  
  296KB
- MD5
  
  9bb221e1b901410f40b490690cd4f86b
- SHA1
  
  ccdd17e8d34d901e8ac33dee2396a1315e019a7c
- SHA256
  
  9cd73ec22b6227b173d2b0ee7e2202e9640297d49e406649a73d86624fbe3362
- SHA512
  
  a6fc53ec5d4405148ed228c12de717d903b8fbc711061ba1f88a1d0528bdf94f155676d4688d7036d258818126a5a2ba59fdc1df2c55e4ca8774c1556f2396f3
- SSDEEP
  
  6144:IcI/ffwfSy3v0nVjvgiFJkDnKafopXm6UD:Icof4fSEOVb3JIf7Z
Score

10^/10

emotet epoch1 banker discovery trojan
- Emotet
  Emotet is a trojan that is primarily spread through spam emails.
  trojan banker emotet
- Emotet family
  emotet
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

1

T1082

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

Emotet family

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2