agenttesla | 9097a287c523d7fa08a52ec60120697c1de7db56e35aa8b4d0ed7ac175b0be46 | Triage

Sharing

General

Target

9097a287c523d7fa08a52ec60120697c1de7db56e35aa8b4d0ed7ac175b0be46
Size

164KB
Sample

240523-bkes7aga31
MD5

f9c54d83aff21b3574bc6ee22bdca90c
SHA1

1abc882c53cc3294bb87f109a323b82984d938f9
SHA256

9097a287c523d7fa08a52ec60120697c1de7db56e35aa8b4d0ed7ac175b0be46
SHA512

4c5eefee660f262516fb4cbe09ea86ec9916ffe31b41dc0d2fac8db899888befe344df451c537250e4417cf6ee010e50f18e6c0ae8b03187589023ccb1dea632
SSDEEP

3072:7o3HgtVbWM+DNf9rTqm4tX2ZW1BmzjQ2pQYqpY9HP:XbWM6f9rTqjmkWQoepY

Score

10^/10

agenttesla microsoft phishing

Malware Config

Extracted

Family

agenttesla

Credentials

Protocol: smtp
Host:
logxtai.shop
Port:
587
Username:
[email protected]
Password:
M9Z}uk]!yhoU
Email To:
[email protected]

Targets

- Target
  
  9097a287c523d7fa08a52ec60120697c1de7db56e35aa8b4d0ed7ac175b0be46
- Size
  
  164KB
- MD5
  
  f9c54d83aff21b3574bc6ee22bdca90c
- SHA1
  
  1abc882c53cc3294bb87f109a323b82984d938f9
- SHA256
  
  9097a287c523d7fa08a52ec60120697c1de7db56e35aa8b4d0ed7ac175b0be46
- SHA512
  
  4c5eefee660f262516fb4cbe09ea86ec9916ffe31b41dc0d2fac8db899888befe344df451c537250e4417cf6ee010e50f18e6c0ae8b03187589023ccb1dea632
- SSDEEP
  
  3072:7o3HgtVbWM+DNf9rTqm4tX2ZW1BmzjQ2pQYqpY9HP:XbWM6f9rTqjmkWQoepY
Score

5^/10

microsoft phishing
- Detected potential entity reuse from brand microsoft.
  phishing microsoft
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

microsoftphishing