ioc[.]one - OSINT Cyber Threat Intelligence Database

Emotet Command and Control Case Study

Tags

attack-pattern:

Show in Graph

Common Information

Type	Value
UUID	de09d2c9-eeb5-48fc-8bc6-aa36fd17b272
Fingerprint	ac131c536c2da319
Analysis status	DONE
Considered CTI value	2
Text language
Published	April 9, 2021, 7 p.m.
Added to db	Sept. 26, 2022, 9:30 a.m.
Last updated	Sept. 5, 2024, 1:32 a.m.
Headline	Emotet Command and Control Case Study
Title	Emotet Command and Control Case Study
Detected Hints/Tags/Attributes	42/1/29

Source URLs

	Redirection	Url
Details	Source	https://unit42.paloaltonetworks.com/emotet-command-and-control/

URL Provider

Details	Provider	Source level domain
Details	paloaltonetworks.com	unit42.paloaltonetworks.com

Attributes

Details	Type	#Events	Value
Details	Domain	2	allcannabismeds.com
Details	Domain	3	giannaspsychicstudio.com
Details	Domain	3	ienglishabc.com
Details	Domain	2	abrillofurniture.com
Details	Domain	3	etkindedektiflik.com
Details	Domain	2	vstsample.com
Details	Domain	3	ezi-pos.com
Details	sha256	2	2cb81a1a59df4a4fd222fbcb946db3d653185c2e79cf4d3365b430b1988d485f
Details	sha256	2	bbb9c1b98ec307a5e84095cf491f7475964a698c90b48a9d43490a05b6ba0a79
Details	sha256	2	bd1e56637bd0fe213c2c58d6bd4e6e3693416ec2f90ea29f0c68a0b91815d91a
Details	IPv4	4	5.2.136.90
Details	IPv4	2	161.49.84.2
Details	IPv4	3	70.32.89.105
Details	IPv4	3	190.247.139.101
Details	IPv4	3	138.197.99.250
Details	IPv4	3	152.170.79.100
Details	IPv4	2	190.55.186.229
Details	IPv4	2	132.248.38.158
Details	IPv4	3	110.172.180.180
Details	IPv4	6	37.46.129.215
Details	IPv4	3	203.157.152.9
Details	IPv4	3	157.245.145.87
Details	Url	2	http://allcannabismeds.com/unraid-map/zzm6
Details	Url	2	http://giannaspsychicstudio.com/cgi-bin/pp
Details	Url	2	http://ienglishabc.com/cow/jh
Details	Url	2	http://abrillofurniture.com/bph-nclex-wygq4/a7nbfhs
Details	Url	2	https://etkindedektiflik.com/pcie-speed/u
Details	Url	2	https://vstsample.com/wp-includes/7exei
Details	Url	2	http://ezi-pos.com/categoryl/x