General

  • Target

    greattastesmb.ca_wp_content_plugins_duplicator_files_thai.exe.malw

  • Size

    277KB

  • MD5

    9a3f655d4e43807eeeefd64a75d4d018

  • SHA1

    c697914759dd9e5a3b80c47a5d4fa584be4af54c

  • SHA256

    89e3a0f67fa4de572c497739e85e28208077b72fbfa6b02aac1937071f940b6b

  • SHA512

    135cccb48b3e4bef652da35c708a17a956648e074c4bcd1ad5d23bbf7e92dda4185c95c707d98f954f37d909d2a25a250a4ebd379f25ecb022a44b7d0bc92ffc

Score
10/10

Malware Config

Extracted

Family

agenttesla

Credentials

  • Protocol:
    smtp
  • Host:
    terminal6.veeblehosting.com
  • Port:
    587
  • Username:
    thai@a-t-mould.com
  • Password:
    9&QpI_d,CB1N

Signatures

  • AgentTesla Payload 1 IoCs
  • Agenttesla family

Files

  • greattastesmb.ca_wp_content_plugins_duplicator_files_thai.exe.malw
    .exe windows x86