General
-
Target
c8dfab17825989c9c22a052185d2864a8574bc3dcfca845fb06173266b40c1b2
-
Size
938KB
-
Sample
240612-b4vnrayame
-
MD5
de94276354fa389af888017c3510e562
-
SHA1
11f3dcf9535c96083e1ac3a54b7630ab4fa0e706
-
SHA256
c8dfab17825989c9c22a052185d2864a8574bc3dcfca845fb06173266b40c1b2
-
SHA512
81b571817c15636461a21748e582931f48b29e5239e18be76987f76a11583ffdc4bd7821b21e6b190df0f2c424c174f1d55c2b8a1a0dbc55bdfd0009399868cf
-
SSDEEP
24576:kMm5SH6MIl3LkGDhsmD/U0lMffVPCDltPUxd:kMm5Lnl7kSUJfVPCDIx
Static task
static1
Behavioral task
behavioral1
Sample
c8dfab17825989c9c22a052185d2864a8574bc3dcfca845fb06173266b40c1b2.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
c8dfab17825989c9c22a052185d2864a8574bc3dcfca845fb06173266b40c1b2.exe
Resource
win10v2004-20240611-en
Malware Config
Extracted
agenttesla
Protocol: smtp- Host:
mail.parannount.com - Port:
587 - Username:
[email protected] - Password:
w+wQ,EGMg!3M - Email To:
[email protected]
Targets
-
-
Target
c8dfab17825989c9c22a052185d2864a8574bc3dcfca845fb06173266b40c1b2
-
Size
938KB
-
MD5
de94276354fa389af888017c3510e562
-
SHA1
11f3dcf9535c96083e1ac3a54b7630ab4fa0e706
-
SHA256
c8dfab17825989c9c22a052185d2864a8574bc3dcfca845fb06173266b40c1b2
-
SHA512
81b571817c15636461a21748e582931f48b29e5239e18be76987f76a11583ffdc4bd7821b21e6b190df0f2c424c174f1d55c2b8a1a0dbc55bdfd0009399868cf
-
SSDEEP
24576:kMm5SH6MIl3LkGDhsmD/U0lMffVPCDltPUxd:kMm5Lnl7kSUJfVPCDIx
Score10/10-
AgentTesla
Agent Tesla is a remote access tool (RAT) written in visual basic.
-
Suspicious use of SetThreadContext
-