General
-
Target
c78dea179e7d5aed1b4a52c44b5534cdac0be1f47be4dfdc3958bd22eb48838e
-
Size
315KB
-
Sample
241117-bhjdlaxjgw
-
MD5
afbf66c51d101896506dad8d878983b1
-
SHA1
af7571404b866f2dcdb29646a22b2fb43dae24ad
-
SHA256
c78dea179e7d5aed1b4a52c44b5534cdac0be1f47be4dfdc3958bd22eb48838e
-
SHA512
79915269341a868f325864f357d1a623630c74f09baad8f174c61b6e4ab2817c3bbb913cd54688694cee2afcbf80ad7ac5766230d86330fb8878432e89dad3f8
-
SSDEEP
3072:nyJ2gdhvYEQ8wkRgdwxkRFuLhftfYhf0QUvYSnt4l0dzhaZpPEkmj:h0vYEQ8wkRgLPsNtf3Jvv4lOe
Malware Config
Extracted
agenttesla
Protocol: ftp- Host:
ftp://ftp.ercolina-usa.com - Port:
21 - Username:
[email protected] - Password:
uy,o#mZj8$lY
Targets
-
-
Target
c78dea179e7d5aed1b4a52c44b5534cdac0be1f47be4dfdc3958bd22eb48838e
-
Size
315KB
-
MD5
afbf66c51d101896506dad8d878983b1
-
SHA1
af7571404b866f2dcdb29646a22b2fb43dae24ad
-
SHA256
c78dea179e7d5aed1b4a52c44b5534cdac0be1f47be4dfdc3958bd22eb48838e
-
SHA512
79915269341a868f325864f357d1a623630c74f09baad8f174c61b6e4ab2817c3bbb913cd54688694cee2afcbf80ad7ac5766230d86330fb8878432e89dad3f8
-
SSDEEP
3072:nyJ2gdhvYEQ8wkRgdwxkRFuLhftfYhf0QUvYSnt4l0dzhaZpPEkmj:h0vYEQ8wkRgLPsNtf3Jvv4lOe
Score10/10-
AgentTesla
Agent Tesla is a remote access tool (RAT) written in visual basic.
-
Agenttesla family
-