agenttesla | 4c7c97dc3c9d11cdf54c1f8e0da90e307d171c898359ea3f45bb1840e289f9cc

Sharing

General

Target

4c7c97dc3c9d11cdf54c1f8e0da90e307d171c898359ea3f45bb1840e289f9cc
Size

455KB
MD5

d8677b900cc76749bfca931c0bd99696
SHA1

e2e8437851851e977c718151e2cc0ff0d1e7698b
SHA256

4c7c97dc3c9d11cdf54c1f8e0da90e307d171c898359ea3f45bb1840e289f9cc
SHA512

63c7f95b6193e3d0f7bfe9ea00ece1a2de985b2177b6958e48afe389dec37e63f40d07ac7687b00a20475456aa5883303bb70f481bb9571c6148e3164a58fcbe
SSDEEP

3072:GTftGvGEwq/tjjpYzDwfPNI5AwOCinwoRzD0SfOmtIpxwW7203Wkt42d4p72/GQ4:z2qGDcsAZ2K0Oa9ho7234Rc0J

Score

10^/10

infostealer miner agenttesla darktrack lockfile m00nd3v_logger matiex modiloader shurk stormkitty surtr vulturi zeppelin masslogger mountlocker xmrig darkcomet

Malware Config

Signatures

AgentTesla payload 1 IoCs

Processes:

resource yara_rule

sample family_agenttesla
Agenttesla family
agenttesla
DarkTrack payload 1 IoCs

Processes:

resource yara_rule

sample family_darktrack
Darkcomet family
darkcomet
Darktrack family
darktrack
Detect LockFile payload 1 IoCs

Processes:

resource yara_rule

sample family_lockfile
Detected Mount Locker ransomware 1 IoCs

Processes:

resource yara_rule

sample RANSOM_mountlocker
Detects Surtr Payload 1 IoCs

Processes:

resource yara_rule

sample family_surtr
Detects Zeppelin payload 1 IoCs

Processes:

resource yara_rule

sample family_zeppelin
Lockfile family
lockfile
M00nD3v Logger payload 1 IoCs
Detects M00nD3v Logger payload in memory.
infostealer

Processes:

resource yara_rule

sample m00nd3v_logger
M00nd3v_logger family
m00nd3v_logger
MassLogger log file 1 IoCs
Detects a log file produced by MassLogger.

Processes:

resource yara_rule

sample masslogger_log_file
Masslogger family
masslogger
Matiex Main payload 1 IoCs

Processes:

resource yara_rule

sample family_matiex
Matiex family
matiex
ModiLoader Second Stage 1 IoCs

Processes:

resource yara_rule

sample modiloader_stage2
Modiloader family
modiloader
Mountlocker family
mountlocker
Shurk Stealer payload 1 IoCs

Processes:

resource yara_rule

sample shurk_stealer
Shurk family
shurk
StormKitty payload 1 IoCs

Processes:

resource yara_rule

sample family_stormkitty
Stormkitty family
stormkitty
Surtr family
surtr
Vulturi family
vulturi
Vulturi payload 1 IoCs

Processes:

resource yara_rule

sample family_vulturi
XMRig Miner payload 1 IoCs
miner

Processes:

resource yara_rule

sample family_xmrig
Xmrig family
xmrig
Zeppelin family
zeppelin

resource	yara_rule
sample	family_agenttesla

resource	yara_rule
sample	family_darktrack

resource	yara_rule
sample	family_lockfile

resource	yara_rule
sample	RANSOM_mountlocker

resource	yara_rule
sample	family_surtr

resource	yara_rule
sample	family_zeppelin

resource	yara_rule
sample	m00nd3v_logger

resource	yara_rule
sample	masslogger_log_file

resource	yara_rule
sample	family_matiex

resource	yara_rule
sample	modiloader_stage2

resource	yara_rule
sample	shurk_stealer

resource	yara_rule
sample	family_stormkitty

resource	yara_rule
sample	family_vulturi

resource	yara_rule
sample	family_xmrig

Files

4c7c97dc3c9d11cdf54c1f8e0da90e307d171c898359ea3f45bb1840e289f9cc
.js