agenttesla | fr[.]exe | Triage

Sharing

General

Target

fr.exe
Size

278KB
MD5

d4120f1c0ff96e3ecb1ec7f8138cb847
SHA1

60a61f4189c4d1954a6f59d0a928deb2a1fb609d
SHA256

8018e39a4001a17df74009dcfe1799eba6db0f6129105ef281bf41034161c122
SHA512

460658bdd7d02d3ad2fd8e190055685a66e41d76170d4d7c2af04072a5682c5a1d6477bb1d4c9188d894ed530c1def1c724ad6edf37803443db0c89eb5a4093c

Score

10^/10

agenttesla

Malware Config

Extracted

Family

agenttesla

Credentials

Protocol: smtp
Host:
terminal6.veeblehosting.com
Port:
587
Username:
francis@a-t-mould.com
Password:
7ry6)LWfznBL

Signatures

AgentTesla Payload 1 IoCs

Processes:

resource yara_rule

sample family_agenttesla
Agenttesla family
agenttesla

Files

fr.exe
.exe windows x86