agenttesla | FYI[.]zip | Triage

Sharing

General

Target

FYI.zip
Size

96KB
MD5

f874ba86f9f13ff606098f05940c5152
SHA1

cfa955ccfd36972b42cca60c18c96d5f52b9c83e
SHA256

28ce338ed936ad061fa414f1dd7e5ac44d6487df1b5e449b50c447a6917a051e
SHA512

ed273b79d0544c621af84132ee08d373a0f76aca4aa76e6fc60670433d0ee0a034e403e43b1bf14d227000bba26c01016b306b1dc5a545c7c0b053e8737a6324

Score

10^/10

agenttesla

Malware Config

Extracted

Family

agenttesla

Credentials

Protocol: smtp
Host:
mail.hybridgroupco.com
Port:
587
Username:
[email protected]
Password:
Money123@@@

Signatures

AgentTesla Payload 1 IoCs

Processes:

resource	yara_rule
static1/unpack001/FYI.exe	family_agenttesla

Agenttesla family
agenttesla

Files

FYI.zip
.zip
FYI.exe
.exe windows x86