Overview

overview

10

Static

static

ARRIVALNOTICE-pdf.exe

windows7_x64

10

ARRIVALNOTICE-pdf.exe

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ARRIVALNOTICE-pdf.exe

  • Size

    2.2MB

  • Sample

    210504-md837lgmej

  • MD5

    d9b7736721f916f9da67529ebd2bbf72

  • SHA1

    d6b891983c8f3175123baa2a8ae94a3e28b6864a

  • SHA256

    ae86688173bc179c5ee6a48d56618aa007a77720213568e5d4115430829f2cac

  • SHA512

    0359510a081b396442991e47837584d7cca9d060bb517a310be778d275885589506def28c25007f6ec52800638f5058c0568c8d65b29fb305b72712abeb881af

Score
10/10
agentteslakeyloggerspywarestealertrojan

Malware Config

Extracted

Family

agenttesla

C2

https://api.telegram.org/bot1749457201:AAGWIY2QPzrHZIumAIUsWjyRAEWcJrauccY/sendDocument

Targets

    • Target

      ARRIVALNOTICE-pdf.exe

    • Size

      2.2MB

    • MD5

      d9b7736721f916f9da67529ebd2bbf72

    • SHA1

      d6b891983c8f3175123baa2a8ae94a3e28b6864a

    • SHA256

      ae86688173bc179c5ee6a48d56618aa007a77720213568e5d4115430829f2cac

    • SHA512

      0359510a081b396442991e47837584d7cca9d060bb517a310be778d275885589506def28c25007f6ec52800638f5058c0568c8d65b29fb305b72712abeb881af

    Score
    10/10
    agentteslakeyloggerspywarestealertrojan
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Scheduled Task

1
T1053

Persistence

Scheduled Task

1
T1053

Privilege Escalation

Scheduled Task

1
T1053

Defense Evasion

Credential Access

Discovery

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks