Overview

overview

10

Static

static

10

2824-2-0x0...ry.exe

windows7-x64

2824-2-0x0...ry.exe

windows10-2004-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2824-2-0x0000000000400000-0x0000000000442000-memory.dmp

  • Size

    264KB

  • Sample

    241017-kcvn4stapj

  • MD5

    85595f4fc0235ef41930a4e3993fd939

  • SHA1

    ef17ef94bfe338c9877658e8b3d822aac0f87ea8

  • SHA256

    f357e97b3b30c8df6f930fc880d047e37dc2058ebd0a3a373f9517ded955997b

  • SHA512

    fd4baa4acaa676b41d1ffd4f28d90157fdce904d792071a79ac5a84e86f6827b42de2a285f00202acca8ec73137602c5cdc82e045bc6ff8b6f0b2340e3cd6cdb

  • SSDEEP

    3072:31IdSm6Gy7ReYlGaeMxW63EshV4IX45yMlUctk:FQSm6Gy7ReYlZei3EkV4IXQlF

Score
10/10
agenttesla

Malware Config

Extracted

Family

agenttesla

Credentials

  • Protocol:     ftp
  • Host:
    ftp://ftp.enviroclean.pe
  • Port:
    21
  • Username:
    [email protected]
  • Password:
    -skHMrp;]#l@

Targets

    • Target

      2824-2-0x0000000000400000-0x0000000000442000-memory.dmp

    • Size

      264KB

    • MD5

      85595f4fc0235ef41930a4e3993fd939

    • SHA1

      ef17ef94bfe338c9877658e8b3d822aac0f87ea8

    • SHA256

      f357e97b3b30c8df6f930fc880d047e37dc2058ebd0a3a373f9517ded955997b

    • SHA512

      fd4baa4acaa676b41d1ffd4f28d90157fdce904d792071a79ac5a84e86f6827b42de2a285f00202acca8ec73137602c5cdc82e045bc6ff8b6f0b2340e3cd6cdb

    • SSDEEP

      3072:31IdSm6Gy7ReYlGaeMxW63EshV4IX45yMlUctk:FQSm6Gy7ReYlZei3EkV4IXQlF

    Score
    1/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks