Overview

overview

10

Static

static

1

IMG-687656...87.exe

windows7_x64

7

IMG-687656...87.exe

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    IMG-68765678765456765445678-678987.exe

  • Size

    369KB

  • Sample

    210226-mkvtw88c3e

  • MD5

    baca83a05dacc73e51e87368f80c3dc6

  • SHA1

    7e901954ace906e16fcfc717f089da7567804908

  • SHA256

    60c9b4a4d205c0eefbc2d78ac2bb5cb40a08a4be11dd61f9155f27287b3fbc57

  • SHA512

    524f1da98d1093bfa720f262c1adab062f30feff29a399d8d513d188e340245615e684267a820259150734099c2f59cbbe53b9bf37552c67dccbdf9c832c8c38

Score
10/10
agentteslakeyloggerpersistencespywarestealertrojan

Malware Config

Extracted

Family

agenttesla

Credentials

  • Protocol:     smtp
  • Host:
    smtp.akhnudoff.com
  • Port:
    587
  • Username:
    nsuleymanov@akhnudoff.com
  • Password:
    shirtmachine123

Targets

    • Target

      IMG-68765678765456765445678-678987.exe

    • Size

      369KB

    • MD5

      baca83a05dacc73e51e87368f80c3dc6

    • SHA1

      7e901954ace906e16fcfc717f089da7567804908

    • SHA256

      60c9b4a4d205c0eefbc2d78ac2bb5cb40a08a4be11dd61f9155f27287b3fbc57

    • SHA512

      524f1da98d1093bfa720f262c1adab062f30feff29a399d8d513d188e340245615e684267a820259150734099c2f59cbbe53b9bf37552c67dccbdf9c832c8c38

    Score
    10/10
    persistenceagentteslakeyloggerspywarestealertrojan
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

1
T1060

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks