agenttesla | 781b2aa75d9ab21381e403cdf4d6a12a355e1ae27865a88ba99b65b0614bb378 | Triage

Submit
Reports

Overview

overview

Static

static

Kopx_Perm.exe

windows10-2004-x64

7

Sharing

General

Target

Kopx_Perm.exe
Size

5.5MB
Sample

240911-wy724svgkn
MD5

2179430234960bd608dfb64dea7c9a61
SHA1

90644ec6e9d67e955d08479559e0712fc66f0c49
SHA256

781b2aa75d9ab21381e403cdf4d6a12a355e1ae27865a88ba99b65b0614bb378
SHA512

b9ccf87f319dd95df5d5468b6e4980b246ab92f09085094602bc9ce86952a45c8fa7b826a06f5b42fa7781a17d37fe70e426444c7f825ff1bbf77314fafe06a1
SSDEEP

49152:/FFnhVgBFnhVSr9JkzvkjXa+FnhVSr9JkzvkjXabsBFnhVKTTFBySg6etzcwp8fz:/VrkzgXyrkzgX9orG8farRQ

Score

10^/10

agenttesla discovery

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

Kopx_Perm.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

11 signatures

150 seconds

Malware Config

Targets

- Target
  
  Kopx_Perm.exe
- Size
  
  5.5MB
- MD5
  
  2179430234960bd608dfb64dea7c9a61
- SHA1
  
  90644ec6e9d67e955d08479559e0712fc66f0c49
- SHA256
  
  781b2aa75d9ab21381e403cdf4d6a12a355e1ae27865a88ba99b65b0614bb378
- SHA512
  
  b9ccf87f319dd95df5d5468b6e4980b246ab92f09085094602bc9ce86952a45c8fa7b826a06f5b42fa7781a17d37fe70e426444c7f825ff1bbf77314fafe06a1
- SSDEEP
  
  49152:/FFnhVgBFnhVSr9JkzvkjXa+FnhVSr9JkzvkjXabsBFnhVKTTFBySg6etzcwp8fz:/VrkzgXyrkzgX9orG8farRQ
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2024

Terms | Privacy