Overview

overview

10

Static

static

REVISE QUO...K).exe

windows7_x64

10

REVISE QUO...K).exe

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    REVISE QUOTATION 21.04.2021.pdf (113K).exe

  • Size

    1.1MB

  • Sample

    210422-atpzb2r4qa

  • MD5

    89ca2118db943ad848bec5c57179ff90

  • SHA1

    228f8081288f70c35f33e5edd5394c1fb8a6cdd6

  • SHA256

    78af4e9c1f31817ce195cd77aea8659a75148c5a302b35e9c17f2ff93a696a0c

  • SHA512

    480e02364f8dd07f423d33c9a3763e6a04e2506093e5f1875e6052bbf6afa4e015814307d420d1b2b76bbd0463ec90c0637ce4fbdf0b057efacb34209b640eba

Score
10/10
agentteslakeyloggerpersistencespywarestealertrojan

Malware Config

Extracted

Family

agenttesla

Credentials

  • Protocol:     smtp
  • Host:
    mail.snacksnco.com
  • Port:
    587
  • Username:
    aslam.ghanchi@snacksnco.com
  • Password:
    aslam.ghanchi

Targets

    • Target

      REVISE QUOTATION 21.04.2021.pdf (113K).exe

    • Size

      1.1MB

    • MD5

      89ca2118db943ad848bec5c57179ff90

    • SHA1

      228f8081288f70c35f33e5edd5394c1fb8a6cdd6

    • SHA256

      78af4e9c1f31817ce195cd77aea8659a75148c5a302b35e9c17f2ff93a696a0c

    • SHA512

      480e02364f8dd07f423d33c9a3763e6a04e2506093e5f1875e6052bbf6afa4e015814307d420d1b2b76bbd0463ec90c0637ce4fbdf0b057efacb34209b640eba

    Score
    10/10
    agentteslakeyloggerpersistencespywarestealertrojan
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

1
T1060

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks