emotet

General

Target

0afb3ab61b555c124b6daecebcd77401_JaffaCakes118
Size

204KB
Sample

240624-2falsaycpm
MD5

0afb3ab61b555c124b6daecebcd77401
SHA1

3987cf580e9cb12db8026b30f84deb156125c829
SHA256

9936d47b871ef345ceca55fd54205ca0d420c581fecbd96c1d6cf98a25d62005
SHA512

ea7bf59830f0f79e1a1fe421af915dd3f6ace8767bc4c53744cfee7df7081ad818d0a0bb555b27a701d8632d887d83362f9579181586cb915351b17f4cd4a3b6
SSDEEP

3072:1x7A0b/kzWBojBGYZdlM1RobOdMDdLXsIhQcDOd:1tAQCbHlgWqdMuIhQcDO

Score

10^/10

Malware Config

Extracted

Family

emotet

Botnet

Epoch3

C2

116.203.117.76:80

108.166.188.146:7080

216.154.222.52:7080

83.169.33.157:8080

5.189.148.98:8080

178.249.187.150:7080

41.60.202.26:22

181.231.62.54:80

201.196.15.79:990

181.55.171.237:8080

201.244.125.210:995

181.230.126.152:8090

80.227.67.18:20

51.38.134.203:8080

143.95.101.72:8080

94.177.253.126:80

181.97.70.132:8080

203.99.182.135:443

190.13.146.47:443

113.52.135.33:7080

rsa_pubkey.plain

Targets

- Target
  
  0afb3ab61b555c124b6daecebcd77401_JaffaCakes118
- Size
  
  204KB
- MD5
  
  0afb3ab61b555c124b6daecebcd77401
- SHA1
  
  3987cf580e9cb12db8026b30f84deb156125c829
- SHA256
  
  9936d47b871ef345ceca55fd54205ca0d420c581fecbd96c1d6cf98a25d62005
- SHA512
  
  ea7bf59830f0f79e1a1fe421af915dd3f6ace8767bc4c53744cfee7df7081ad818d0a0bb555b27a701d8632d887d83362f9579181586cb915351b17f4cd4a3b6
- SSDEEP
  
  3072:1x7A0b/kzWBojBGYZdlM1RobOdMDdLXsIhQcDOd:1tAQCbHlgWqdMuIhQcDO
Score

10^/10

emotet epoch3 banker trojan
- Emotet
  Emotet is a trojan that is primarily spread through spam emails.
  trojan banker emotet
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

1

T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

Sharing

General

Malware Config

Extracted

Targets

Drops file in System32 directory

MITRE ATT&CK Matrix ATT&CK v13

Tasks

static1

behavioral1

behavioral2