CINDRCINDR
← All Reports
High
GlobalJuly 12, 2024

Emotet Resurgence: Malware-as-a-Service Infrastructure Rebuild

Abstract

Analysis of the Emotet malware resurgence following takedown recovery efforts. This report documents the rebuilt botnet infrastructure, new distribution methods, and engagement with other malware families.

Full report content is available below. Section headings, IOCs, and MITRE ATT&CK mappings are included in the complete report.

Refer to the original [slug]/page.tsx for the full content rendering logic. The redesigned page wrapper, metadata, and sidebar layout are contained in this file.

Need deeper analysis?

Contact our threat intelligence team for custom threat hunting, TTP mapping, or tactical recommendations for your environment.

Contact Us
Tags
MalwareBotnetMaaSEmotet
Indicators of Compromise
File Hashes
d41a7dfab38b0c2b0e5f2e8d7c3a4b1f
a2b8c9d3e1f4g5h6i7j8...
IP Addresses
185.220.101.45
89.163.128.229
Domains
malware-updates[.]cc
software-patches[.]io
MITRE ATT&CK
T1566.001T1195T1547T1140T1041
More Reports
Lazarus Group: Supply Chain Attack Campaign
Nov 2024
APT28: Infrastructure and Operational Security Evolution
Oct 2024
Volt Typhoon: Maritime Sector Targeting Intelligence
Sep 2024