General
-
Target
FiveFinder.exe
-
Size
1.4MB
-
Sample
240426-ddd97ahd54
-
MD5
1e941bebf9fe16bce5c1967b5afffba8
-
SHA1
b4a4cdff52f85f12cd3b4e1f251d46f424302f29
-
SHA256
9360b84645809c8bb4387bf69a84ab8af0c3e01bd8072c60c1b5d728820b3cf9
-
SHA512
64577f9c6b5fb0613f56365ff98a2e3d632a70981ff801cf2632d81fa17c44b1cc7419931c21d2c0f0107dd21846c25fe450787dad23b92a48c3ecb568401435
-
SSDEEP
24576:HSc5TMSc5TeITMvRFhRRbNWoCfkYSEH3OqtwIuXckqjVnlqud+/2P+AkwEJ:HSZS5ITYbNbNWo4kSH3OqtwIrkqXfd+r
Static task
static1
Behavioral task
behavioral1
Sample
FiveFinder.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
FiveFinder.exe
Resource
win10v2004-20240412-en
Malware Config
Targets
-
-
Target
FiveFinder.exe
-
Size
1.4MB
-
MD5
1e941bebf9fe16bce5c1967b5afffba8
-
SHA1
b4a4cdff52f85f12cd3b4e1f251d46f424302f29
-
SHA256
9360b84645809c8bb4387bf69a84ab8af0c3e01bd8072c60c1b5d728820b3cf9
-
SHA512
64577f9c6b5fb0613f56365ff98a2e3d632a70981ff801cf2632d81fa17c44b1cc7419931c21d2c0f0107dd21846c25fe450787dad23b92a48c3ecb568401435
-
SSDEEP
24576:HSc5TMSc5TeITMvRFhRRbNWoCfkYSEH3OqtwIuXckqjVnlqud+/2P+AkwEJ:HSZS5ITYbNbNWo4kSH3OqtwIrkqXfd+r
-
AgentTesla
Agent Tesla is a remote access tool (RAT) written in visual basic.
-
AgentTesla payload
-
Downloads MZ/PE file
-