Overview

overview

10

Static

static

3

Maskify.cc.exe

windows7-x64

3

Maskify.cc.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Maskify.cc.exe

  • Size

    1.7MB

  • Sample

    240911-ynfk8azcnm

  • MD5

    dc67fb9e861d861b7f8d27db27aa2dfc

  • SHA1

    614dc2e1d36f6f3d9f6ecfa814c7c165d185e42b

  • SHA256

    795af86d784540720986a7f2e6127717443156eb80c4d9cc8f3fb1496afaf842

  • SHA512

    a8645c99c5b19f585c36ee1efa485b29827449f62d8664bb55669e72950eaaf3f9c9c3d17a3dfc94bcc1e1f004682c215f555372ae43474d7c8e37d3d695946c

  • SSDEEP

    49152:2pkcK3GphIElHcsDBsDPsDdK3GphIElHcsDotK3GphIElH:sK3GpaElHrSYBK3GpaElHrEtK3GpaElH

Score
10/10
agenttesladiscoverykeyloggerspywarestealertrojan

Malware Config

Targets

    • Target

      Maskify.cc.exe

    • Size

      1.7MB

    • MD5

      dc67fb9e861d861b7f8d27db27aa2dfc

    • SHA1

      614dc2e1d36f6f3d9f6ecfa814c7c165d185e42b

    • SHA256

      795af86d784540720986a7f2e6127717443156eb80c4d9cc8f3fb1496afaf842

    • SHA512

      a8645c99c5b19f585c36ee1efa485b29827449f62d8664bb55669e72950eaaf3f9c9c3d17a3dfc94bcc1e1f004682c215f555372ae43474d7c8e37d3d695946c

    • SSDEEP

      49152:2pkcK3GphIElHcsDBsDPsDdK3GphIElHcsDotK3GphIElH:sK3GpaElHrSYBK3GpaElHrEtK3GpaElH

    Score
    10/10
    discoveryagentteslakeyloggerspywarestealertrojan

    • AgentTesla

      Agent Tesla is a remote access tool (RAT) written in visual basic.

      keyloggertrojanstealerspywareagenttesla

    • AgentTesla payload

    • Downloads MZ/PE file

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks