General
-
Target
PO Contract -SCPL0882021 & sales contract ZD.1.19022021_PDF.exe
-
Size
532KB
-
Sample
210223-fza64t9jax
-
MD5
1aee76519a71de3f3f4e7485c2fcc9cb
-
SHA1
7a0138e465d7dd20a726f3ccebf811b059355dd4
-
SHA256
95d7e599e9a76497dd73084440554dfcf4a94974d49e88c43f23611d4bce5d12
-
SHA512
8f039b136c2c49adee9aaf92b881702a81dfba08a5ae47226d5b41c267fc475471b4d7ecf2b3c8ac06234f8a97c738ac026d2f298e275c1f759609b578a7a4b3
Static task
static1
Behavioral task
behavioral1
Sample
PO Contract -SCPL0882021 & sales contract ZD.1.19022021_PDF.exe
Resource
win7v20201028
Behavioral task
behavioral2
Sample
PO Contract -SCPL0882021 & sales contract ZD.1.19022021_PDF.exe
Resource
win10v20201028
Malware Config
Extracted
agenttesla
Protocol: smtp- Host:
smtp.yandex.com - Port:
587 - Username:
fikriye@turuncoglu.com - Password:
Fikriye1234
Targets
-
-
Target
PO Contract -SCPL0882021 & sales contract ZD.1.19022021_PDF.exe
-
Size
532KB
-
MD5
1aee76519a71de3f3f4e7485c2fcc9cb
-
SHA1
7a0138e465d7dd20a726f3ccebf811b059355dd4
-
SHA256
95d7e599e9a76497dd73084440554dfcf4a94974d49e88c43f23611d4bce5d12
-
SHA512
8f039b136c2c49adee9aaf92b881702a81dfba08a5ae47226d5b41c267fc475471b4d7ecf2b3c8ac06234f8a97c738ac026d2f298e275c1f759609b578a7a4b3
Score10/10-
AgentTesla
Agent Tesla is a remote access tool (RAT) written in visual basic.
-
AgentTesla Payload
-