agenttesla | 256e85dc0566c06cb4d5789c03cf9f12e419ac5c525e042c5a85b87366374dbd | Triage

Sharing

General

Target

256e85dc0566c06cb4d5789c03cf9f12e419ac5c525e042c5a85b87366374dbd
Size

159KB
Sample

240526-b8wrlsae6w
MD5

865e166b9b7c3e21b4eec573df4aa7e0
SHA1

15f249aecd451c83764ccf34182346e877cade36
SHA256

256e85dc0566c06cb4d5789c03cf9f12e419ac5c525e042c5a85b87366374dbd
SHA512

68a12628e19b6a87f10482cbbc2b648a1edaee295523373d0713c6877a57f66316fdf36a1ad6a2771748a872288c1496872f64910931acfe9ea10ab7ac2f0dc0
SSDEEP

3072:owDfV3GGv4NnclURjbgLZy1ofkyvakwALUIARcJhB/vM3MN:oK8GgulURXglJ89kwALUIARcHRv

Score

10^/10

agenttesla microsoft phishing

Malware Config

Extracted

Family

agenttesla

Credentials

Protocol: smtp
Host:
smtp.stcable.net
Port:
587
Username:
[email protected]
Password:
abda7a80

Targets

- Target
  
  256e85dc0566c06cb4d5789c03cf9f12e419ac5c525e042c5a85b87366374dbd
- Size
  
  159KB
- MD5
  
  865e166b9b7c3e21b4eec573df4aa7e0
- SHA1
  
  15f249aecd451c83764ccf34182346e877cade36
- SHA256
  
  256e85dc0566c06cb4d5789c03cf9f12e419ac5c525e042c5a85b87366374dbd
- SHA512
  
  68a12628e19b6a87f10482cbbc2b648a1edaee295523373d0713c6877a57f66316fdf36a1ad6a2771748a872288c1496872f64910931acfe9ea10ab7ac2f0dc0
- SSDEEP
  
  3072:owDfV3GGv4NnclURjbgLZy1ofkyvakwALUIARcJhB/vM3MN:oK8GgulURXglJ89kwALUIARcHRv
Score

5^/10

microsoft phishing
- Detected potential entity reuse from brand microsoft.
  phishing microsoft
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

microsoftphishing