Overview

overview

10

Static

static

1

p004575839574947.exe

windows7-x64

10

p004575839574947.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    p004575839574947.exe

  • Size

    1.1MB

  • Sample

    230329-f5dh3sge3y

  • MD5

    f90d87222db82285ce87a988b372524a

  • SHA1

    b4a571be12134d9ff6c91fc8fc46b8f53ba3d176

  • SHA256

    53873190e732fcbe931729aadb3d4f878d74bd17dc64c282b4efa1f87d021b43

  • SHA512

    299c35d9c16ce2479b104787d04f50f644db735f540a148d07cef32a78f01343d15b9c7610ebd88482eec76e600c80f4b33152228d4af69cf43c29aa72a4e116

  • SSDEEP

    12288:00ZeZOUnaKuQdJFUbDLYqid+3eo9geDCknIfblyi7uDvOI8fpXVNLhc5LiJMUZCp:9KgoYi3ImgiSs/1cNQz9oG

Score
10/10
agentteslacollectionkeyloggerspywarestealertrojan

Malware Config

Extracted

Family

agenttesla

Credentials

  • Protocol:     smtp
  • Host:
    mail.focuzpartsmart.com
  • Port:
    587
  • Username:
    johnsonpc@focuzpartsmart.com
  • Password:
    FpmJhn@2023
  • Email To:
    jinhux31@gmail.com

Targets

    • Target

      p004575839574947.exe

    • Size

      1.1MB

    • MD5

      f90d87222db82285ce87a988b372524a

    • SHA1

      b4a571be12134d9ff6c91fc8fc46b8f53ba3d176

    • SHA256

      53873190e732fcbe931729aadb3d4f878d74bd17dc64c282b4efa1f87d021b43

    • SHA512

      299c35d9c16ce2479b104787d04f50f644db735f540a148d07cef32a78f01343d15b9c7610ebd88482eec76e600c80f4b33152228d4af69cf43c29aa72a4e116

    • SSDEEP

      12288:00ZeZOUnaKuQdJFUbDLYqid+3eo9geDCknIfblyi7uDvOI8fpXVNLhc5LiJMUZCp:9KgoYi3ImgiSs/1cNQz9oG

    Score
    10/10
    agentteslakeyloggerspywarestealertrojancollection
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Email Collection

1
T1114

Exfiltration

Command and Control

Impact

Tasks