agenttesla | 824db7cfe196b635d4047a37938d08f01eabd9b8e342c41ed5fab4b39f83d1cc | Triage

Sharing

General

Target

824db7cfe196b635d4047a37938d08f01eabd9b8e342c41ed5fab4b39f83d1cc
Size

165KB
Sample

240523-b339hahc26
MD5

18d95b2e3669e99c729a97bfb04ce4e1
SHA1

120902540531cc34d400ca5f28747b93d75cd7da
SHA256

824db7cfe196b635d4047a37938d08f01eabd9b8e342c41ed5fab4b39f83d1cc
SHA512

8231c3bba0dddf1766c671a7eed1f647425d87c953375cb54a7a248880eb99989c1567adab2441efb724fd0312bf709a43e339c2c36e5e0ec44c10d28b575fb6
SSDEEP

3072:art6uXMwnp/bd11NpKD7ccj25a0POu3mS6XWCaKMkHX7:iXtDFK9Ya0POu31rKMkH

Score

10^/10

agenttesla microsoft phishing

Malware Config

Extracted

Family

agenttesla

Credentials

Protocol: smtp
Host:
us2.smtp.mailhostbox.com
Port:
587
Username:
[email protected]
Password:
IvHg^r)2
Email To:
[email protected]

Targets

- Target
  
  824db7cfe196b635d4047a37938d08f01eabd9b8e342c41ed5fab4b39f83d1cc
- Size
  
  165KB
- MD5
  
  18d95b2e3669e99c729a97bfb04ce4e1
- SHA1
  
  120902540531cc34d400ca5f28747b93d75cd7da
- SHA256
  
  824db7cfe196b635d4047a37938d08f01eabd9b8e342c41ed5fab4b39f83d1cc
- SHA512
  
  8231c3bba0dddf1766c671a7eed1f647425d87c953375cb54a7a248880eb99989c1567adab2441efb724fd0312bf709a43e339c2c36e5e0ec44c10d28b575fb6
- SSDEEP
  
  3072:art6uXMwnp/bd11NpKD7ccj25a0POu3mS6XWCaKMkHX7:iXtDFK9Ya0POu31rKMkH
Score

5^/10

microsoft phishing
- Detected potential entity reuse from brand microsoft.
  phishing microsoft
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

microsoftphishing