agenttesla | c963cb5adb198fbdaebb940f816d135596264d03de0be61de00d0bd1cb204c93

Sharing

Copy URL

Twitter E-mail

General

Target

MonoExploits.rar
Size

3.5MB
Sample

240712-sgkcyayepl
MD5

4c79075828659d435ff39f5fab8650f2
SHA1

180533fec18abc14d511c29e18e0a01b9edada8d
SHA256

c963cb5adb198fbdaebb940f816d135596264d03de0be61de00d0bd1cb204c93
SHA512

b4276cc021652506684666fb722863decdc63384b10a47b14548d6c23ca4d41aa32684213cf40df80d05c1a8b314f2bb0ae27bd95a334571ccafb95012b567ff
SSDEEP

49152:62REXJ0rh+eGIAcCoo5Lky/4obUVBrGuGkz5vZUCovWmNspylEt5JBATqfq/MXGL:HRgJg+eGcgYzVz5h3sNVmnATSq/MXW

Score

10^/10

agenttesla execution

Malware Config

Targets

- Target
  
  MonoExploits.rar
- Size
  
  3.5MB
- MD5
  
  4c79075828659d435ff39f5fab8650f2
- SHA1
  
  180533fec18abc14d511c29e18e0a01b9edada8d
- SHA256
  
  c963cb5adb198fbdaebb940f816d135596264d03de0be61de00d0bd1cb204c93
- SHA512
  
  b4276cc021652506684666fb722863decdc63384b10a47b14548d6c23ca4d41aa32684213cf40df80d05c1a8b314f2bb0ae27bd95a334571ccafb95012b567ff
- SSDEEP
  
  49152:62REXJ0rh+eGIAcCoo5Lky/4obUVBrGuGkz5vZUCovWmNspylEt5JBATqfq/MXGL:HRgJg+eGcgYzVz5h3sNVmnATSq/MXW
Score

3^/10
behavioral1 behavioral2
- Target
  
  Mono/CeleryIn.bin
- Size
  
  44KB
- MD5
  
  cc7e9dd40db5c538627c7645eb14d036
- SHA1
  
  4ccac29689ddd6b63892df0bbbf98aa1250419bf
- SHA256
  
  67c8386dc05355c49b8137990218be6177dba810fae418f0cce964c1d0082702
- SHA512
  
  3a91394dfa95ce012925639f12d05cbdd3c8f0b955601043952e3b6aa89cde816107a857d772bb5528422f41f2206b5a415de8fdfed2a178f2b13904a15dc5cf
- SSDEEP
  
  384:jVdzew6q0MEe7Tc8cZO1D9WDPAy7cRxoTYVJa5voVMmA2QdwB5bh1r:RYiXFcZkRcXbTYVJa8NA2jj
Score

1^/10
behavioral3 behavioral4
- Target
  
  Mono/CeleryInject.exe
- Size
  
  3.4MB
- MD5
  
  ff3728a63db84bd000176d56e5672d0f
- SHA1
  
  ddac6646d16d6efe73d9cf8b8c7a8cb3d8ab55ae
- SHA256
  
  375f3b4bdff6a9d9ac581456d0ed49b56e72443cc09bac1010596b74b8945d02
- SHA512
  
  8824507a41a59ec649d51f012c6ec777237edc42b764c47c9fdff6e7e3722adf0283ff118ad69018cd27911572feb1db280a5feecea2936780e6dddfa5df3eb3
- SSDEEP
  
  49152:B5EU2GVV1EcBHbhI9ZFlDGjiolwOp3fvGA:UsX1JUu
Score

1^/10
behavioral5 behavioral6
- Target
  
  Mono/Guna.UI2.dll
- Size
  
  2.1MB
- MD5
  
  c19e9e6a4bc1b668d19505a0437e7f7e
- SHA1
  
  73be712aef4baa6e9dabfc237b5c039f62a847fa
- SHA256
  
  9ac8b65e5c13292a8e564187c1e7446adc4230228b669383bd7b07035ab99a82
- SHA512
  
  b6cd0af436459f35a97db2d928120c53d3691533b01e4f0e8b382f2bd81d9a9a2c57e5e2aa6ade9d6a1746d5c4b2ef6c88d3a0cf519424b34445d0d30aab61de
- SSDEEP
  
  49152:6QNztBO2+VN7N3HtnPhx70ZO4+CPXOn5PThDH2TBeHjvjiBckYf+Yh/FJ3:6Ahck2z
Score

1^/10
behavioral7 behavioral8
- Target
  
  Mono/Monaco/Monaco.html
- Size
  
  6KB
- MD5
  
  999896134bd43cefa865f37e514ba62f
- SHA1
  
  97077125bb36ba072e30f2ec68f80ae213f76b84
- SHA256
  
  1ecdd9529ef5487f92736894d94ff680f6c32ee821615d29c0fc814f3a310b4a
- SHA512
  
  6af01d1c9d4212e25fc35e9ae0730538f01b3d62cd904fec90077030ede5b07af952388e57927f3518895580b95263c70372f791a247572da657e70bf8c3ab47
- SSDEEP
  
  192:wEod3PorvFhAmQp5keghKcCI2MCTJ3+NLSaPh/WCY/jt:ud3PonBw5keghHwjt
Score

1^/10
behavioral10 behavioral9
- Target
  
  Mono/Monaco/base.txt
- Size
  
  132B
- MD5
  
  0d834904a252e1ab786f9637bef6819f
- SHA1
  
  f8fbbdc4d0c5ebdc4037b32183a7be3027541596
- SHA256
  
  dbe440c5dee6367ebca919886ffe593246e1e52618e4713373000c9fc77c87cc
- SHA512
  
  72a23e1ccacbaabbd65660b57fe4d9c6bf403f35f46bd439c171eb3682c805a387db25ac2206bb9a868b230aba38de38d25bb2102a2bda688ef7ab7ba67a0b42
Score

1^/10
behavioral11 behavioral12
- Target
  
  Mono/Monaco/classfunc.txt
- Size
  
  1KB
- MD5
  
  bf32e93d11011eb780619b3e17fb824a
- SHA1
  
  f0fa7dbd2577b83a5d5a81622557ca05966d292c
- SHA256
  
  519da000de235c331f10660509fab51a1815ace566b8ae5b511b75813922dcb1
- SHA512
  
  5d0b4cc09c5966b3cf806b02816eb95dfc42c7e4c2056b37d254d835459444c796759795e64c3171453b5bd9d70d2705775e7200a0283725676f26a39323dc9d
Score

1^/10
behavioral13 behavioral14
- Target
  
  Mono/Monaco/globalf.txt
- Size
  
  835B
- MD5
  
  1700df0210cda593d3df64f51b3caaea
- SHA1
  
  d4832190dc99184f0e0fde832e453fef9330646c
- SHA256
  
  deae98f86c62749e4b642acb41ea5dfce0caf09bc77036aae82ee814a04ed9e0
- SHA512
  
  76a651129e25bf2ac1f4a1f1e397185ec4eeb292ef64ed44633bde6ecc7b342cb1464224f2c521a69ac51d88dc4d46bc392c5db2ab94939bf84be5ef21f85add
Score

1^/10
behavioral15 behavioral16
- Target
  
  Mono/Monaco/globalns.txt
- Size
  
  220B
- MD5
  
  ba56c14634b7ae6fb585be396acf5f03
- SHA1
  
  8aa4125655cd48073b55c5ea892e5da734220bbc
- SHA256
  
  5cb987e7c87f2f04cdd45f3a474fb2380bbf846534e38f2b485eafc562b7b482
- SHA512
  
  46a904064080fa51e9071e11c44685cdeadf0cdabe5feb038a4a85f2141ef13d46bd0563016ea62e5b1ccb76995c71451f6ba958b5551c31d36231b8f436190f
Score

1^/10
behavioral17 behavioral18
- Target
  
  Mono/Monaco/globalv.txt
- Size
  
  161B
- MD5
  
  5cf9f238d4e62c8bcde351651c3a2a45
- SHA1
  
  16f25e5686f1235d1fbd9b9954236b043d2e6260
- SHA256
  
  eeb98f2c9911ae8ddd25f1b3be3732000f16788bda60aa962e9f8452012b1062
- SHA512
  
  b2fb24e6309303220eead8ac60d68959d189178db62611361440cafd219b45e57d3b79656b51df13eb825097557e9cd735ef228c1fc82e593368ce30fb88ca58
Score

1^/10
behavioral19 behavioral20
- Target
  
  Mono/Monaco/vs/base/worker/workerMain.js
- Size
  
  149KB
- MD5
  
  27ead90c7702154755785e0e53398755
- SHA1
  
  86b59485fe6f6ccb1805183fa75062a2ac1c859e
- SHA256
  
  bdf9433692a08851e13dd58504eef19f51bd2ec7241923a68edf5772e0e53af5
- SHA512
  
  6829681575179c90bb7817b17feee60e7d44d8abb15264ab39d7f0edf95dd1d030b99c12b005c753cd786c26ce6f17ff09b058c16f3363596f785e386ef78e82
- SSDEEP
  
  1536:XNSxrkwnz+dTHHfvYYdBwDZ2Ogvh52xgh2hQXIvTBaB7hU74Yc6aphU1PblosJEl:XzdTagJkb+6jFlJJEt9yjjTCD2zw
Score

3^/10

execution
behavioral21 behavioral22
- Target
  
  Mono/Monaco/vs/basic-languages/bat/bat.js
- Size
  
  2KB
- MD5
  
  4cb475399c4490eea41982dcd6d9653e
- SHA1
  
  fc97d57206ff7fa1c89ff0fc9f6e2f04a20ea185
- SHA256
  
  9bca42394fe8922fec24b768eeb8ce04692de6fad82f9052d5b7e70f5c6b0f40
- SHA512
  
  27eefe83cf38a7d784414d99b472f6fcd7e595691eb0f368254ba1f71aaf702840b62bf232c30c515a8fada234699fefeef496c0c24669cc158cb567227e4783
Score

3^/10

execution
behavioral23 behavioral24
- Target
  
  Mono/Monaco/vs/basic-languages/coffee/coffee.js
- Size
  
  3KB
- MD5
  
  9d0c4ac1691eed0a480c3e9246490d29
- SHA1
  
  38258864fd070c35cec6b68715d58771df9fe3e1
- SHA256
  
  e706c9f8e5c5a0cb01b2f4e4879ec34a050d6eb2a8840284eb7badd9d78099f9
- SHA512
  
  437a703607a9f0cb96ffb56312d149b95f596290591d14098c36d978b2e1fdba3c3712c9099923bc0a709c5c0ebd7eea868f63dfbcc69cdf5a9325b8a67006b6
Score

3^/10

execution
behavioral25 behavioral26
- Target
  
  Mono/Monaco/vs/basic-languages/cpp/cpp.js
- Size
  
  5KB
- MD5
  
  0a16509e6cd0155fb622e785cfe976c7
- SHA1
  
  7afa7f823191c43d7a4bdd7d91577495de62c21a
- SHA256
  
  a7c2bea7ca3d9e203a3a286735945fe010c8f4f8d46620386ee8befc6a78b32b
- SHA512
  
  2cbc48cb10c467561c6a84f59405e9c2f864640b3a21e6fe5cd14ad1a7ca5667b766b3c0511df26f28205dd17338a878bd1164a4f5875235a73214f3e4aeb49d
- SSDEEP
  
  96:hFDMgRs/rbV1+gqVV1+/LVb9ZRC2seM6jjz13MwVcEghhb6Yw76wGcmvRBNIs:hZGrTOcVv5M61h8hSeiYL
Score

3^/10

execution
behavioral27 behavioral28
- Target
  
  Mono/Monaco/vs/basic-languages/csharp/csharp.js
- Size
  
  4KB
- MD5
  
  f8f841d13c9220e15dcd6bc386b37ba2
- SHA1
  
  2b8b7003820d19ed83afde98c845db5e3d5753f8
- SHA256
  
  6b3be9a86ee8e3202f51745d94d24cc1eefbcf7d9e6d94fbaf70146b084e835f
- SHA512
  
  0b167865b8d7847792c80144e83bdf33655db6ecc0934bb3290f8b5793fee8168aeaf9d74b3541a9424c4f180aad496c2d8710e3847a5bf9d4b2c960ddea4ae5
- SSDEEP
  
  96:hFDMgRsVx+rbV1+gqGV1+hmQuq1cBh8b7gj8/pLxb6J994wGcKU7dYIkI:hZi+rTtPsRXpw9SiKUJGI
Score

3^/10

execution
behavioral29 behavioral30
- Target
  
  Mono/Monaco/vs/basic-languages/csp/csp.js
- Size
  
  1KB
- MD5
  
  22ada25d590811dcff4e5f5d698e583b
- SHA1
  
  c43d4846967d5037ef05b102e49d1fbc54e45fbc
- SHA256
  
  4b5a5d7d50986b86b00833447e097c0f01a4388ce1765b48e7e371d06e3a4789
- SHA512
  
  c8373ea0b78114f82e8bf027473f72ada0d8acd51623152a0072111d8b3b7d5ac310a1cc510c4e4cd2e97a7686db3c87b2da675fc910898bd11108e4b50ed189
Score

3^/10

execution
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

T1059

JavaScript

T1059.007

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32