General
-
Target
de1c102c744ec2fe71720cc1264ac8d7_JaffaCakes118
-
Size
1.0MB
-
Sample
240913-k11v2awand
-
MD5
de1c102c744ec2fe71720cc1264ac8d7
-
SHA1
b3f76be526f29e2c173e72c7df477b3b97911759
-
SHA256
d2a5e86da0edf06f2ee106ad5e483a91809ee8975932b6ed2d8dfc8d01704a15
-
SHA512
501fbfa4b6630c5939ec1f0c34f7d0d41d3a5833d442943a83bf8af18b02ed3b363aabec3796d62fe6d4129722436fc5dfeb50c2d6111c94a0287d0e73258716
-
SSDEEP
12288:9OnCmTpY6j6jRPLjRPqjBjjyjBjBjBjBjLjLMhImYqUiygv4bDxZw6h7mgPN3G8E:Yq3vgwbF2smgxd5
Static task
static1
Behavioral task
behavioral1
Sample
de1c102c744ec2fe71720cc1264ac8d7_JaffaCakes118.exe
Resource
win7-20240903-en
Malware Config
Extracted
agenttesla
Protocol: smtp- Host:
smtp.yandex.com - Port:
587 - Username:
[email protected] - Password:
Fikriye1234
Targets
-
-
Target
de1c102c744ec2fe71720cc1264ac8d7_JaffaCakes118
-
Size
1.0MB
-
MD5
de1c102c744ec2fe71720cc1264ac8d7
-
SHA1
b3f76be526f29e2c173e72c7df477b3b97911759
-
SHA256
d2a5e86da0edf06f2ee106ad5e483a91809ee8975932b6ed2d8dfc8d01704a15
-
SHA512
501fbfa4b6630c5939ec1f0c34f7d0d41d3a5833d442943a83bf8af18b02ed3b363aabec3796d62fe6d4129722436fc5dfeb50c2d6111c94a0287d0e73258716
-
SSDEEP
12288:9OnCmTpY6j6jRPLjRPqjBjjyjBjBjBjBjLjLMhImYqUiygv4bDxZw6h7mgPN3G8E:Yq3vgwbF2smgxd5
-
AgentTesla
Agent Tesla is a remote access tool (RAT) written in visual basic.
-
AgentTesla payload
-