Emotet Returns, Now Adopts Binary Padding for Evasion
Tags
Common Information
| Type | Value |
|---|---|
| UUID | 12d3f6f3-ef23-46e0-b98c-eb3b47655df1 |
| Fingerprint | a63828116f750f0f |
| Analysis status | DONE |
| Considered CTI value | 0 |
| Text language | |
| Published | March 13, 2023, midnight |
| Added to db | Oct. 15, 2024, 4:06 p.m. |
| Last updated | Nov. 17, 2024, 6:55 p.m. |
| Headline | Emotet Returns, Now Adopts Binary Padding for Evasion |
| Title | Emotet Returns, Now Adopts Binary Padding for Evasion |
| Detected Hints/Tags/Attributes | 35/2/16 |
Source URLs
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 2 | midcoastsupplies.com.au |
|
| Details | Domain | 2 | mtp.evotek.vn |
|
| Details | Domain | 2 | www.189dom.com |
|
| Details | Domain | 3 | esentai-gourmet.kz |
|
| Details | Domain | 2 | www.snaptikt.com |
|
| Details | Domain | 2 | diasgallery.com |
|
| Details | File | 459 | regsvr32.exe |
|
| Details | File | 226 | certutil.exe |
|
| Details | IPv4 | 4 | 139.219.4.166 |
|
| Details | Url | 2 | https://midcoastsupplies.com.au/confignqs/es2oe4geh7fbz |
|
| Details | Url | 2 | http://mtp.evotek.vn/wp-content/l |
|
| Details | Url | 2 | http://www.189dom.com/xue80/c0ajr5tfi5pvi8m |
|
| Details | Url | 2 | https://esentai-gourmet.kz/404/edt0f |
|
| Details | Url | 4 | http://139.219.4.166/wp-includes/xxrrajtiutdhn7n13 |
|
| Details | Url | 2 | https://www.snaptikt.com/wp-includes/am4cz6wp2k4sfq |
|
| Details | Url | 2 | https://diasgallery.com:443/about/r |