Emotet - один из самых опасных троянов, когда-либо созданных. За время своего существования он был усовершенствован и превратился в очень разрушительную вредоносную программу. Его жертвами становятся в основном корпоративные пользователи, но даже частные пользователи заражаются в ходе массовых спам-рассылок.
Emotet Botnet
- Emotet Botnet IOCs
- Emotet Trojan IOC
- Emotet botnet IOC
- Emotet (epoch4) IOCs
- Emotet (Epoch5) x64 Botnet IOCs
- Emotet (E4) Botnet IOCs - Part 6
- Emotet (E4, E5) Botnet IOCs - Part 7
- Emotet (E4) Botnet IOCs - Part 8
- Emotet (E4) Botnet IOCs - Part 9
- Emotet (E4) Botnet IOCs - Part 10
Indicators of Compromise
Domains
- akdalarabic.com
- atici.net
- atperson.com
- birebiregitim.net
- borntobefree.org.za
- buffetmazzi.com.br
- eryaz.net
- garantihaliyikama.com
- greenlizard.co.za
- kspintidana.com
- mobiles-photostudio.com
- zablimconsultancy.co.ke
URLs
- http://1.234.2.232:8080
- http://101.50.0.91:8080
- http://103.132.242.26:8080
- http://103.43.75.120:443
- http://103.70.28.102:8080
- http://103.75.201.2:443
- http://104.168.155.143:8080
- http://107.170.39.149:8080
- http://110.232.117.186:8080
- http://115.68.227.76:8080
- http://119.193.124.41:7080
- http://129.232.188.93:443
- http://131.100.24.231:80
- http://134.122.66.193:8080
- http://135.148.6.80:443
- http://139.59.126.41:443
- http://144.202.108.116:8080
- http://144.91.78.55:443
- http://146.59.226.45:443
- http://147.139.166.154:8080
- http://149.56.131.28:8080
- http://150.95.66.124:8080
- http://151.106.112.196:8080
- http://153.126.146.25:7080
- http://158.69.222.101:443
- http://159.65.140.115:443
- http://159.65.88.10:8080
- http://159.89.202.34:443
- http://160.16.142.56:8080
- http://163.44.196.120:8080
- http://164.68.99.3:8080
- http://164.90.222.65:443
- http://167.172.253.162:8080
- http://172.104.251.154:8080
- http://172.105.226.75:8080
- http://173.212.193.249:8080
- http://183.111.227.137:8080
- http://185.4.135.165:8080
- http://186.194.240.217:443
- http://188.44.20.25:443
- http://196.218.30.83:443
- http://197.242.150.244:8080
- http://201.94.166.162:443
- http://206.189.28.199:8080
- http://207.148.79.14:8080
- http://209.126.98.206:8080
- http://209.97.163.214:443
- http://212.24.98.99:8080
- http://213.239.212.5:443
- http://213.241.20.155:443
- http://37.187.115.122:8080
- http://45.118.115.99:8080
- http://45.176.232.124:443
- http://45.235.8.30:8080
- http://45.55.191.130:443
- http://5.9.116.246:8080
- http://51.161.73.194:443
- http://51.254.140.238:7080
- http://51.91.76.89:8080
- http://64.227.100.222:8080
- http://72.15.201.15:8080
- http://79.137.35.198:8080
- http://82.165.152.127:8080
- http://82.223.21.224:8080
- http://91.207.28.33:8080
- http://94.23.45.86:4143
- http://akdalarabic.com/cgi-bin/NxYwE8FyaIw3Kgile/
- http://atici.net/c/MgEC/
- http://borntobefree.org.za/kQLk1lMTa79K4xwgJ5g/ZMmtgsoZk9ng1S6V/
- http://wp.eryaz.net/bayar1/7sa9BpCVdDRcrMWiROv3/
- http://www.birebiregitim.net/wp-includes/f/
- http://www.garantihaliyikama.com/wp-admin/CcxWGjZEjriZ9zMdsP/
- http://www.kspintidana.com/wp-admin/jjiOcQAL/
- https://atperson.com/campusvirtual/3aAaeSKPaURF/
- https://buffetmazzi.com.br/ckfinder/i/
- https://greenlizard.co.za/amanah/FnrTI/
- https://www.mobiles-photostudio.com/MPS/uYUKsZhII1qQ1/
- https://www.zablimconsultancy.co.ke/musagala/pmOVrwAwG/
Emails
- chika.wang@techshine-fast-japan.co.jp
- netra@specialised.com.zm
- prashant.singh@dbgindia.in
MD5
- 0bfd69ce435d7f0db8c30702017b71c8
- 0e445e2a2199554c5d27042aa473fee1
- 3a60e3e1ca8d62c24ff02c4668c76e68
- 477fe5be42866c506e7108519d146fe5
- 47e61cb9da5b2f248a18de86e81b7a4f
- 530d20fb2bc6356ccd1c3ab0089d597f
- 64f92b68237a33f75f17c4b70be74892
- 745dac0fc6ed20141b8e9b80b76addc4
- 7763b9b3b7c8fce0e17d8dc0baf3e380
- 84673c38f5e1f93ff5c57eb1d097b0f0
- 8ca8be01e53e56587226bbfe400b11fe
- 92a38b6fce686bb20ee29e07bb11e884
- a8889626d0e86ac158319d28333b5ed8
- bca774464f52e484a93f3841124758a1
- c3b0dc693bc36b7c887b3cb21338eda5
- df4dfe44908991a18e74751b9bd724fc
- ff6ee1ef620f6fd055c3f906ba29cbf4