Overview

overview

10

Static

static

Ei76uYS4ahe752B.exe

windows7_x64

10

Ei76uYS4ahe752B.exe

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Ei76uYS4ahe752B.exe

  • Size

    670KB

  • Sample

    210504-xzld9zs9wa

  • MD5

    37bdeb7dd32f6bf7ef310ca575f4236d

  • SHA1

    fbd39cda4384a9bef901bb74afe2e42240fde4b2

  • SHA256

    f3299da1eb5ad076c503fa440ba15e4bb418fa17b5cf0315620eaecf3b618de5

  • SHA512

    b42edd28261294da3d6ac4c0a53ce5a1fbc6fe4060790c84e554139377a6c278fda6f045c0f086c667d72755c0ee7a7f97884d75e37930e62cafb4b00db4ca4d

Score
10/10
agentteslakeyloggerspywarestealertrojan

Malware Config

Extracted

Family

agenttesla

Credentials

  • Protocol:     smtp
  • Host:
    mail.caltra.pt
  • Port:
    587
  • Username:
    ricardo.godinho@caltra.pt
  • Password:
    caltra1589

Targets

    • Target

      Ei76uYS4ahe752B.exe

    • Size

      670KB

    • MD5

      37bdeb7dd32f6bf7ef310ca575f4236d

    • SHA1

      fbd39cda4384a9bef901bb74afe2e42240fde4b2

    • SHA256

      f3299da1eb5ad076c503fa440ba15e4bb418fa17b5cf0315620eaecf3b618de5

    • SHA512

      b42edd28261294da3d6ac4c0a53ce5a1fbc6fe4060790c84e554139377a6c278fda6f045c0f086c667d72755c0ee7a7f97884d75e37930e62cafb4b00db4ca4d

    Score
    10/10
    agentteslakeyloggerspywarestealertrojan
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Scheduled Task

1
T1053

Persistence

Scheduled Task

1
T1053

Privilege Escalation

Scheduled Task

1
T1053

Defense Evasion

Credential Access

Discovery

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks