Emotet IOC Feed
Emotet is a malware threat that broadly targets victims across many verticals. Every organization should subscribe to an Emotet IOC feed that is regularly updated many times per day.
What is Emotet?
Emotet is one of the most widely distributed malware families over the past few years. Emotet (also known as Geodo) initially started as a banking trojan written for the purpose of perpetrating fraud. It is usually distributed through large-scale email spam campaigns containing malicious attachments or using embedded links to malicious documents containing a downloader script.
The Emotet botnet was disrupted by global law enforcement action on January 27, 2021 during which several arrests were made. This action took the botnet offline for almost a year before it resurfaced on November 15, 2021.
Automated Emotet Alerts in Microsoft Sentinel
PrecisionSec actively tracks ongoing Emotet malware campaigns. Samples are tracked using hash values (md5, sha256) and network telemetry and config data are extracted and added to our outgoing intelligence.
The data feeds seamlessly integrate with most major security products including MISP and Microsoft Sentinel. All PrecisionSec threat intelligence products include Emotet C2 and distribution IOCs with a subscription.
Recent Emotet IOCs
Below you will find the most recent Emotet IOCs from our Threat Intelligence Feed. All of these indicators have been internally verified using custom YARA rules. Please note the data below is intentionally delayed by 48 hours. For live data updated every minute, including command & control (C2) data, please sign up for a free trial.
| URL / IP / MD5 | Date Added |
|---|---|
| https://jobcity.com/img/RM0XpX/ | 2024-12-07 14:50:28 |
| 181.167.96.215 | 2024-11-22 00:26:01 |
| 92.23.34.86 | 2024-11-22 00:25:50 |
| 201.213.156.176 | 2024-11-22 00:25:47 |
| 202.62.39.111 | 2024-11-22 00:25:44 |
| 187.106.41.99 | 2024-11-22 00:24:15 |
| 93.151.186.85 | 2024-11-22 00:22:55 |
| 189.1.185.98 | 2024-11-22 00:22:52 |
| 190.17.195.202 | 2024-11-22 00:21:50 |
| 181.114.114.203 | 2024-05-25 04:19:57 |