General

  • Target

    SecuriteInfo.com.Heur.Pack.Emotet.3.27704.83

  • Size

    140KB

  • Sample

    200731-e9pylffyqn

  • MD5

    9ba8d7669017fbd7c2677d235be96ca9

  • SHA1

    c56c670e725bca22732e5c72131d766566a0dffa

  • SHA256

    8154634cf63366e94e2550188d6936858b24fc17ec8a2290f9c4f35d01d29c2b

  • SHA512

    3762ef7df0e1d3fda30254901efd30f6350adf7abb18a4d9417cbdda3a50cc583af6199f66c86169dd6598f29918a3deb0366ee41b6c5859c15734c650725cb0

Score
8/10

Malware Config

Targets

    • Target

      SecuriteInfo.com.Heur.Pack.Emotet.3.27704.83

    • Size

      140KB

    • MD5

      9ba8d7669017fbd7c2677d235be96ca9

    • SHA1

      c56c670e725bca22732e5c72131d766566a0dffa

    • SHA256

      8154634cf63366e94e2550188d6936858b24fc17ec8a2290f9c4f35d01d29c2b

    • SHA512

      3762ef7df0e1d3fda30254901efd30f6350adf7abb18a4d9417cbdda3a50cc583af6199f66c86169dd6598f29918a3deb0366ee41b6c5859c15734c650725cb0

    Score
    8/10
    • Executes dropped EXE

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

MITRE ATT&CK Matrix

Tasks