4b931b39b584ba3ad6584c9c93f8f58b708225384d35ced025cb4eda55311618

Sharing

Copy URL

Twitter E-mail

General

Target

emotet-dll-20210113.zip
Size

1.3MB
Sample

210114-gwtf2zvlv6
MD5

7c5e2702da475e233bb701f85fd8b7a6
SHA1

a6d03d663872579c852758f9d0c6959601531668
SHA256

4b931b39b584ba3ad6584c9c93f8f58b708225384d35ced025cb4eda55311618
SHA512

7dbea78e5cff98a6493045ab9c8cc4abd7f6906b37030dc56fffc968830caee0c81319de970f35438e6846103cd5b64385abaa61f6fa5bc40b875d6c62cb864f

Score

8^/10

Malware Config

Targets

- Target
  
  E1-20191210_102353
- Size
  
  276KB
- MD5
  
  eb74d6e06e9923d605cb63f2dc037d62
- SHA1
  
  06f3a9a94a48a0b19374617de8f54dec55cd3307
- SHA256
  
  7c073c25d28eb332ba72fbc5424370dc6b87fd2dd737ec704871819936502954
- SHA512
  
  ff8b6a7c6668fd086b9bf8f9d873b1fadb2a5ba29ff537f85636a5ee481dead8af7205250128829b186704d899a41801f3ed69f37409ee6881ab8b2eff63d129
Score

8^/10
- Blocklisted process makes network request
- Drops file in System32 directory
behavioral1
- Target
  
  E1-20191211_134358
- Size
  
  275KB
- MD5
  
  69ed8109e063fa7a089cfacc9962c39c
- SHA1
  
  217c21471924628fc61700a982a7965fefc03900
- SHA256
  
  90b319245257e363713f031b792fe9bc2f56a718b8ce5c24a2e83e4ebeca66fb
- SHA512
  
  a44ade7a9fb6512d44182c596f40d9fe935a98070034d42d7a8ba0db40a81ec92a8f91c65bb4e04698462e9bd07e4088b901e238d9630a8a33f3424a5a88a537
Score

8^/10
- Blocklisted process makes network request
- Drops file in System32 directory
behavioral2
- Target
  
  E1-20191212_112720
- Size
  
  271KB
- MD5
  
  6d65571a1d5bb5ce2f3168dbcc6c12c9
- SHA1
  
  c5c2903fcdf700d27b240f834f1641b67fa352c7
- SHA256
  
  8fa8d19ca8875f370b5267c9e666f67d3eeb4ea55d061e6ac0aa618e8ac3d8de
- SHA512
  
  84732ad954375ee0d524c38cad5898cff8c8b1bdfb67c9ae7f8920c2c2f098871d7e1ee87c118c6cf1fd09cbad919a43897715112a1506139f62547ee74f04a3
Score

8^/10
- Blocklisted process makes network request
- Drops file in System32 directory
behavioral3
- Target
  
  E1-20201223_211330
- Size
  
  129KB
- MD5
  
  1c243dba6df64d7924c4f3b4599898ae
- SHA1
  
  b42946fb7d28ddcb79207ef2082bd095b09143c1
- SHA256
  
  6b4495449e1fa2f96c32e79fa71d2f5fb45feb5bbe546716df9cc02bbcba8022
- SHA512
  
  d7bd3a76faf9bba90ec57c0aeea188738a4fa6a527896c5cb3dacfeb78f6e17ce5eeb5edf8aed43e51ca1419799c51059bf2662cc76d96cf4f9dc89ccd9f5a57
Score

1^/10
behavioral4
- Target
  
  E2-20191210_102353
- Size
  
  273KB
- MD5
  
  7dbc62deb4ebc76db3cc1188952312d4
- SHA1
  
  1f9190c32df4430e1696540863c8c2f7f64d0e55
- SHA256
  
  9af5296eecf5e74a7b6dbe89ea5beeb4e56d4f5c9a565ca09e4ffe0e94881607
- SHA512
  
  b3fd1e858c9e018e9f63ad54cb75c54f1f11946401c575537b1de55bdfb83afbde7f1aa1bbf7cf05a3d5d5cc181705b7164e2d4a093d8e91c7962e9ac09c4268
Score

8^/10
- Blocklisted process makes network request
- Drops file in System32 directory
behavioral5
- Target
  
  E2-20191211_134358
- Size
  
  269KB
- MD5
  
  2c177c13a67a7a8ce5e2c5a0312e3223
- SHA1
  
  1158b27db357ba36fc3922d0f85d7be3ab3f3aa7
- SHA256
  
  2bffe5e50c10299a36490f0c0ab76c4b31acbd111e52684bb141d1bc267493ae
- SHA512
  
  8a0684acf5ac3d079104a6684c0ab1d32728008295417b36f56572178e83ba08ca47ce31a1a0f9d47b79ec8b4036c7437b3ff8d5e79cf5b2ebbfeb1d1b063925
Score

8^/10
- Blocklisted process makes network request
- Drops file in System32 directory
behavioral6
- Target
  
  E2-20210112_211117
- Size
  
  326KB
- MD5
  
  0ee5c78c6e2ee9f8a8c201474fd03b2e
- SHA1
  
  b9ee4779a250c3b12178ea84bb406073acc1e65a
- SHA256
  
  2ddb9f69277cc1e2d2d2fe68462774b793dba5ef2c4857f4d7cc1023900c5f36
- SHA512
  
  081395800148b74f7c1a82948417e98a0016642a75e7e3c13e9255d66594550befe6f12dbd564ec6aa6ede01f53c45c97d7e9864c58762102ff6cf6d0d56a261
Score

8^/10
- Blocklisted process makes network request
- Drops file in System32 directory
behavioral7
- Target
  
  E3-20191210_102353
- Size
  
  278KB
- MD5
  
  85859656fc6ad38cf55b415b656ee11b
- SHA1
  
  2fc3fb386e5f1192e9bd87c05a388a1a0aeaaedc
- SHA256
  
  855d84d494b9bfed3cc8e39d36042e2e7aa08d744b4298cb73470567f8bce2a2
- SHA512
  
  73a3a69b0ca60bc83b6cc73aadb9f425efa136fdc70ea8be3324af31006039a411841949f16dac23e5400d036f5c2f775b0e71e86ac272e017da96a500e3105b
Score

8^/10
- Blocklisted process makes network request
- Drops file in System32 directory
behavioral8
- Target
  
  E3-20191210_121355
- Size
  
  239KB
- MD5
  
  142d5ba556836b61131e9e99421f7e46
- SHA1
  
  8a96f76b77134e848617f086e0d1bccb65a63f11
- SHA256
  
  74781ef4b04689d9782c61c4ce5f28cd055e00ef234da80bc465f5bc79f04c3b
- SHA512
  
  71ca536197270d52e289e6a82f61a2f19cf520f07acc7ec9392df5603896d0425c498d870ec3e93619b3b271fe8b09047bc49ad8a002a53389da2586fa3b737f
Score

8^/10
- Blocklisted process makes network request
- Drops file in System32 directory
behavioral9

MITRE ATT&CK Matrix

Tasks

Sharing

General

Malware Config

Targets

Blocklisted process makes network request

Drops file in System32 directory

Blocklisted process makes network request

Drops file in System32 directory

Blocklisted process makes network request

Drops file in System32 directory

Blocklisted process makes network request

Drops file in System32 directory

Blocklisted process makes network request

Drops file in System32 directory

Blocklisted process makes network request

Drops file in System32 directory

Blocklisted process makes network request

Drops file in System32 directory

Blocklisted process makes network request

Drops file in System32 directory

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9