PO Contract -SCPL0882021 & sales contract ZD.1.19022021_PDF.exe

General
Target

PO Contract -SCPL0882021 & sales contract ZD.1.19022021_PDF.exe

Size

532KB

Sample

210223-fza64t9jax

Score
10 /10
MD5

1aee76519a71de3f3f4e7485c2fcc9cb

SHA1

7a0138e465d7dd20a726f3ccebf811b059355dd4

SHA256

95d7e599e9a76497dd73084440554dfcf4a94974d49e88c43f23611d4bce5d12

SHA512

8f039b136c2c49adee9aaf92b881702a81dfba08a5ae47226d5b41c267fc475471b4d7ecf2b3c8ac06234f8a97c738ac026d2f298e275c1f759609b578a7a4b3

Malware Config

Extracted

Family agenttesla
Credentials

Protocol: smtp

Host: smtp.yandex.com

Port: 587

Username: fikriye@turuncoglu.com

Password: Fikriye1234

Targets
Target

PO Contract -SCPL0882021 & sales contract ZD.1.19022021_PDF.exe

MD5

1aee76519a71de3f3f4e7485c2fcc9cb

Filesize

532KB

Score
10 /10
SHA1

7a0138e465d7dd20a726f3ccebf811b059355dd4

SHA256

95d7e599e9a76497dd73084440554dfcf4a94974d49e88c43f23611d4bce5d12

SHA512

8f039b136c2c49adee9aaf92b881702a81dfba08a5ae47226d5b41c267fc475471b4d7ecf2b3c8ac06234f8a97c738ac026d2f298e275c1f759609b578a7a4b3

Tags

Signatures

Related Tasks

MITRE ATT&CK Matrix
Collection
    Command and Control
      Credential Access
        Defense Evasion
          Discovery
            Execution
              Exfiltration
                Impact
                  Initial Access
                    Lateral Movement
                      Persistence
                        Privilege Escalation
                          Tasks