General
-
Target
PO AA21C04U3101-MTXGA6_PDF.exe
-
Size
611KB
-
Sample
210408-6lggwnmy9a
-
MD5
591c96d331d55c84ccb817c8957b63dd
-
SHA1
cf75bba79c7f3290936e2d00f86f4efd4aca7deb
-
SHA256
600715af104a41db6d18d62a5980b87423f009eac1b1b96330e06e3cb3314637
-
SHA512
05180607fe0450fbf81e1f67b7ff8b8cf88f0a6541a3df015c466de4c8e516c51b4ccc446634e1ab60aeee099d32375316a0d7e9f69be773caae676a85e4426b
Static task
static1
Behavioral task
behavioral1
Sample
PO AA21C04U3101-MTXGA6_PDF.exe
Resource
win7v20201028
Behavioral task
behavioral2
Sample
PO AA21C04U3101-MTXGA6_PDF.exe
Resource
win10v20201028
Malware Config
Extracted
agenttesla
Protocol: smtp- Host:
mail.nke.com.my - Port:
587 - Username:
godfrey@nke.com.my - Password:
Godfrey@2021
Targets
-
-
Target
PO AA21C04U3101-MTXGA6_PDF.exe
-
Size
611KB
-
MD5
591c96d331d55c84ccb817c8957b63dd
-
SHA1
cf75bba79c7f3290936e2d00f86f4efd4aca7deb
-
SHA256
600715af104a41db6d18d62a5980b87423f009eac1b1b96330e06e3cb3314637
-
SHA512
05180607fe0450fbf81e1f67b7ff8b8cf88f0a6541a3df015c466de4c8e516c51b4ccc446634e1ab60aeee099d32375316a0d7e9f69be773caae676a85e4426b
Score10/10-
AgentTesla
Agent Tesla is a remote access tool (RAT) written in visual basic.
-
AgentTesla Payload
-