agenttesla | 27a3694eb575ce0314f7bbbd65606a0ed227f75f62b8cfb624ecd144db60f957 | Triage

Sharing

General

Target

27a3694eb575ce0314f7bbbd65606a0ed227f75f62b8cfb624ecd144db60f957
Size

164KB
Sample

240523-bmqngagb4s
MD5

51c4197acc65e7567a33117eb9c2c857
SHA1

17c279e3a4d65b222e94ec738e0659b30342b736
SHA256

27a3694eb575ce0314f7bbbd65606a0ed227f75f62b8cfb624ecd144db60f957
SHA512

1eaf571ec8ba14fe2a8ab299aaec6038c60c232f10ecb26e5939730a3b14d04356f78dd1e6a786d610711a0f480153123688644c15e7f81b77a6fd8a9344f7cd
SSDEEP

3072:Gvli/r8Hhkef0IgVBLz7UkgqndS0NxdC2c54cK5:gHdf0IgVBvIk3n1NxdU4

Score

10^/10

agenttesla microsoft phishing

Malware Config

Extracted

Family

agenttesla

Credentials

Protocol: smtp
Host:
mail.laptopstores.in
Port:
587
Username:
[email protected]
Password:
Subhasini@2020
Email To:
[email protected]

Targets

- Target
  
  27a3694eb575ce0314f7bbbd65606a0ed227f75f62b8cfb624ecd144db60f957
- Size
  
  164KB
- MD5
  
  51c4197acc65e7567a33117eb9c2c857
- SHA1
  
  17c279e3a4d65b222e94ec738e0659b30342b736
- SHA256
  
  27a3694eb575ce0314f7bbbd65606a0ed227f75f62b8cfb624ecd144db60f957
- SHA512
  
  1eaf571ec8ba14fe2a8ab299aaec6038c60c232f10ecb26e5939730a3b14d04356f78dd1e6a786d610711a0f480153123688644c15e7f81b77a6fd8a9344f7cd
- SSDEEP
  
  3072:Gvli/r8Hhkef0IgVBLz7UkgqndS0NxdC2c54cK5:gHdf0IgVBvIk3n1NxdU4
Score

5^/10

microsoft phishing
- Detected potential entity reuse from brand microsoft.
  phishing microsoft
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

microsoftphishing