agenttesla | 136ed599cfa69ca15c8c1dfa6085137b1e6a3efb5df3c426087528e43f8172a8 | Triage

Sharing

General

Target

136ed599cfa69ca15c8c1dfa6085137b1e6a3efb5df3c426087528e43f8172a8.exe
Size

264KB
Sample

241218-dgby8szmbs
MD5

f68f3b1eadd777012be0218a7735b3b8
SHA1

73a2cc3b5d457474d86f72f65829d132f16edccb
SHA256

136ed599cfa69ca15c8c1dfa6085137b1e6a3efb5df3c426087528e43f8172a8
SHA512

a4c2c05a32f5127c66ad1e24d50f3a7d19ce45202458f817fb7b5d6fba1e3c5f5704708ce96dd868ac2ac9647478976b47c91ad122695d3500892141a8615de5
SSDEEP

3072:6klDYDrrTD8GenSH63SatZTCafBMK4rxHUQ58KpVfWB:6k+DrrTD8GenC63lbjaKuNUWpB8

Score

10^/10

agenttesla discovery

Malware Config

Extracted

Family

agenttesla

Credentials

Protocol: smtp
Host:
smtp.yandex.ru
Port:
587
Username:
[email protected]
Password:
graceofgod@amen
Email To:
[email protected]

Targets

- Target
  
  136ed599cfa69ca15c8c1dfa6085137b1e6a3efb5df3c426087528e43f8172a8.exe
- Size
  
  264KB
- MD5
  
  f68f3b1eadd777012be0218a7735b3b8
- SHA1
  
  73a2cc3b5d457474d86f72f65829d132f16edccb
- SHA256
  
  136ed599cfa69ca15c8c1dfa6085137b1e6a3efb5df3c426087528e43f8172a8
- SHA512
  
  a4c2c05a32f5127c66ad1e24d50f3a7d19ce45202458f817fb7b5d6fba1e3c5f5704708ce96dd868ac2ac9647478976b47c91ad122695d3500892141a8615de5
- SSDEEP
  
  3072:6klDYDrrTD8GenSH63SatZTCafBMK4rxHUQ58KpVfWB:6k+DrrTD8GenC63lbjaKuNUWpB8
Score

3^/10

discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2