General
-
Target
08052024_0340_07052024_Mt103.zip
-
Size
767KB
-
Sample
240508-d8e5zabd68
-
MD5
179e5597d2e835cc9478d2fdf01f679f
-
SHA1
67eb42853cc880440215a90d584ce5e761e67369
-
SHA256
513ade6541cfef6040c23bc4310ceeaa26626128f0798b97a3b7de23e0d7e9ed
-
SHA512
fb2737c28a59ee261169b4457e5d32c421f0d56f7cd7046aac48901d177f5574076941270c7376093cfff66049d5d61f130af0de59b0ac42bf9236b6eb6a1c17
-
SSDEEP
12288:wVrDNzNooy/+6Q97fX5LUTQH0OYqTOsiE7Vrq9UIRAQICCMaWJjfyIJE:wVrpzyQVRHHNYYiGV3sBfz9pKiE
Static task
static1
Behavioral task
behavioral1
Sample
Mt103.exe
Resource
win7-20240221-en
Malware Config
Targets
-
-
Target
Mt103.exe
-
Size
1.2MB
-
MD5
488b62ebafa8cf690c5bbc6654b90371
-
SHA1
f823d4862173d5e9f8745a31bc6620839126e6bb
-
SHA256
d30a0a4160b520aa94e2aacbc0f016d1f31a3168130b5d83c0ed3356eff4439b
-
SHA512
20f05e5de74cfe36a6d7ffc6903ed29f25f29c606e90c1d8e98f0a3e0cdc2f4e78211591d89d07f32f90cbafc6644c14e4a3faad58d2417624841c2b31506806
-
SSDEEP
24576:EqDEvCTbMWu7rQYlBQcBiT6rprG8a6EBlHDZKcW:ETvC/MTQYxsWR7a6EBlHDZKc
-
AgentTesla
Agent Tesla is a remote access tool (RAT) written in visual basic.
-
Detect ZGRat V1
-
Suspicious use of SetThreadContext
-