agenttesla | d350bcbbca3760d0db9e41526466f136afa2790d1126f052adbd5d841d9c4287 | Triage

Sharing

General

Target

d350bcbbca3760d0db9e41526466f136afa2790d1126f052adbd5d841d9c4287
Size

264KB
Sample

241016-bg7pssvdla
MD5

a0335e2ef1786751f1ec8b09db39ab50
SHA1

4489ffcb549c720137a3274f2eae1a7f78c3cc9d
SHA256

d350bcbbca3760d0db9e41526466f136afa2790d1126f052adbd5d841d9c4287
SHA512

57c2792b60dec9ff1a9169195e415b6ca42693a5b8eec3f392c8dd3a1c3331f296185ddfe0307426fe0d3ba53b770ba3f0acb492244d585e104027717295efa6
SSDEEP

3072:jfucCwxx9GRtB1R3UT4PqDVcksL2p9kJP95AuoHNouFNfm/Em25Pvu7NBQ:rwyxIRtB1R3UoMVGJLr0NfhmYux

Score

10^/10

agenttesla discovery

Malware Config

Extracted

Family

agenttesla

Credentials

Protocol: ftp
Host:
ftp://ftp.haliza.com.my
Port:
21
Username:
[email protected]
Password:
JesusChrist007$

Targets

- Target
  
  d350bcbbca3760d0db9e41526466f136afa2790d1126f052adbd5d841d9c4287
- Size
  
  264KB
- MD5
  
  a0335e2ef1786751f1ec8b09db39ab50
- SHA1
  
  4489ffcb549c720137a3274f2eae1a7f78c3cc9d
- SHA256
  
  d350bcbbca3760d0db9e41526466f136afa2790d1126f052adbd5d841d9c4287
- SHA512
  
  57c2792b60dec9ff1a9169195e415b6ca42693a5b8eec3f392c8dd3a1c3331f296185ddfe0307426fe0d3ba53b770ba3f0acb492244d585e104027717295efa6
- SSDEEP
  
  3072:jfucCwxx9GRtB1R3UT4PqDVcksL2p9kJP95AuoHNouFNfm/Em25Pvu7NBQ:rwyxIRtB1R3UoMVGJLr0NfhmYux
Score

3^/10

discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2