agenttesla | 7d8d573ee61ca88f9d0b5090c29552540a8eaa7206f18ec88e419ee1ae6a61c9 | Triage

Submit
Reports

Overview

overview

Static

static

7d8d573ee6...c9.exe

windows7-x64

1

7d8d573ee6...c9.exe

windows10-2004-x64

5

Sharing

General

Target

7d8d573ee61ca88f9d0b5090c29552540a8eaa7206f18ec88e419ee1ae6a61c9
Size

207KB
Sample

240523-b1dk3aha89
MD5

1eee5aa349fa7320f2d744e66b5cfff3
SHA1

03f4a9758dbfe59c540cc8e5d48ae170dff275f7
SHA256

7d8d573ee61ca88f9d0b5090c29552540a8eaa7206f18ec88e419ee1ae6a61c9
SHA512

9072b18f22408c4447490d1675c4d036f18f58a1ebd96ae3b3b93566ec6081a94ad71352ce8344307750eb53a712a02bca87fa5f99ec24c11ca3163312d9d0f5
SSDEEP

3072:/K32Vday4Hi3u5SJg1Ym0lB4eUeqLqtYJa12IfSqijUOInqLY96gZhaNqW:i3YeygHcUeqLqtJKqYUOt0ZXa

Score

10^/10

agenttesla microsoft phishing

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

7d8d573ee61ca88f9d0b5090c29552540a8eaa7206f18ec88e419ee1ae6a61c9.exe

Resource

win7-20240221-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

7d8d573ee61ca88f9d0b5090c29552540a8eaa7206f18ec88e419ee1ae6a61c9.exe

Resource

win10v2004-20240426-en

microsoft phishing

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Extracted

Family

agenttesla

C2

https://api.telegram.org/bot5322219147:AAE0Z9Lq-g-SXI1X2beYR26iGFyieqMa3DE/sendDocument

Targets

- Target
  
  7d8d573ee61ca88f9d0b5090c29552540a8eaa7206f18ec88e419ee1ae6a61c9
- Size
  
  207KB
- MD5
  
  1eee5aa349fa7320f2d744e66b5cfff3
- SHA1
  
  03f4a9758dbfe59c540cc8e5d48ae170dff275f7
- SHA256
  
  7d8d573ee61ca88f9d0b5090c29552540a8eaa7206f18ec88e419ee1ae6a61c9
- SHA512
  
  9072b18f22408c4447490d1675c4d036f18f58a1ebd96ae3b3b93566ec6081a94ad71352ce8344307750eb53a712a02bca87fa5f99ec24c11ca3163312d9d0f5
- SSDEEP
  
  3072:/K32Vday4Hi3u5SJg1Ym0lB4eUeqLqtYJa12IfSqijUOInqLY96gZhaNqW:i3YeygHcUeqLqtJKqYUOt0ZXa
Score

5^/10

microsoft phishing
- Detected potential entity reuse from brand microsoft.
  phishing microsoft
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Query Registry

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2

microsoftphishing

© 2018-2024

Terms | Privacy