General
-
Target
ANÁLISIS DEL CONTRATO-pdf.exe
-
Size
703KB
-
Sample
231207-va21hsdf59
-
MD5
1a19d3b35592f19f97ad7c43b0a875e6
-
SHA1
38fd4bb32e9b5a0d58413954bed06aadb3e714ba
-
SHA256
35e6acc4ddeace130bae6e47e1e1062862fd7f6b4fecf8136dd3e109c5011aa4
-
SHA512
8f9de97ca969b26809fc47101091c20895bcc35793a331d22cc7fa32929fcc2229eb7b99b44d3a070431adc0795d5c81175e8fb98688a73382d72d4ad3ebf0f4
-
SSDEEP
12288:ywFGHEJsv/EqlEyhS6fOaoceSZylgimtdYM3O0V7bbb:y5HEJsHEqlHSkElgZtub0V7j
Static task
static1
Behavioral task
behavioral1
Sample
ANÁLISIS DEL CONTRATO-pdf.exe
Resource
win7-20231020-en
Behavioral task
behavioral2
Sample
ANÁLISIS DEL CONTRATO-pdf.exe
Resource
win10v2004-20231127-en
Malware Config
Extracted
agenttesla
Protocol: ftp- Host:
ftp://ftp.vvspijkenisse.nl - Port:
21 - Username:
[email protected] - Password:
playingboyz231
Targets
-
-
Target
ANÁLISIS DEL CONTRATO-pdf.exe
-
Size
703KB
-
MD5
1a19d3b35592f19f97ad7c43b0a875e6
-
SHA1
38fd4bb32e9b5a0d58413954bed06aadb3e714ba
-
SHA256
35e6acc4ddeace130bae6e47e1e1062862fd7f6b4fecf8136dd3e109c5011aa4
-
SHA512
8f9de97ca969b26809fc47101091c20895bcc35793a331d22cc7fa32929fcc2229eb7b99b44d3a070431adc0795d5c81175e8fb98688a73382d72d4ad3ebf0f4
-
SSDEEP
12288:ywFGHEJsv/EqlEyhS6fOaoceSZylgimtdYM3O0V7bbb:y5HEJsHEqlHSkElgZtub0V7j
Score10/10-
AgentTesla
Agent Tesla is a remote access tool (RAT) written in visual basic.
-
Drops file in System32 directory
-