Overview

overview

10

Static

static

1.exe

windows7_x64

10

1.exe

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1.exe

  • Size

    475KB

  • Sample

    211021-j6epbaaac8

  • MD5

    63272d6116e99e0ba7f0576eae74b73f

  • SHA1

    d67eb4467ba29fda766d06f72e525e0f492744d6

  • SHA256

    18835a65226f3e12ce4712f8c60afb32d1b87cc4938562e96ebdd87e9505807d

  • SHA512

    3518a6f0dccd9e96008c70eda479fdb4da14784f090ab600fdb6a725648afbb972e7c69ab16c578dd5a2855c6217b7161f157de7048b3ff4f4eba434f1faa221

Score
10/10
agentteslacollectionkeyloggerspywarestealertrojan

Malware Config

Extracted

Family

agenttesla

Credentials

  • Protocol:     smtp
  • Host:
    smtp.gailanz.com
  • Port:
    587
  • Username:
    champ.zhu@gailanz.com
  • Password:
    l0j@cL$9t}Zw

Targets

    • Target

      1.exe

    • Size

      475KB

    • MD5

      63272d6116e99e0ba7f0576eae74b73f

    • SHA1

      d67eb4467ba29fda766d06f72e525e0f492744d6

    • SHA256

      18835a65226f3e12ce4712f8c60afb32d1b87cc4938562e96ebdd87e9505807d

    • SHA512

      3518a6f0dccd9e96008c70eda479fdb4da14784f090ab600fdb6a725648afbb972e7c69ab16c578dd5a2855c6217b7161f157de7048b3ff4f4eba434f1faa221

    Score
    10/10
    agentteslacollectionkeyloggerspywarestealertrojan
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Email Collection

1
T1114

Exfiltration

Command and Control

Impact

Tasks