General
-
Target
8dfb536ce9f3120837fdc61c752b4ac3b82cf1276b2aba3be69c6b7d402961e9
-
Size
261KB
-
Sample
240630-bwdp9s1gqc
-
MD5
2df88875a1249b727af92c5c60a98865
-
SHA1
7642e5513c8b5336f85ea240525138abc851bc0c
-
SHA256
8dfb536ce9f3120837fdc61c752b4ac3b82cf1276b2aba3be69c6b7d402961e9
-
SHA512
74b027cc807d5172e9717a98b1bf5b1d9b3bbf2ceaae25493c3485d63c4dbce9d269c6bb8c600932be65b3ba448a3f26e94a0f4f11b3a1d75732e198f2ab13f9
-
SSDEEP
6144:ADKW1Lgbdl0TBBvjc/EbUjqAENbLN2dWpbmtwArMZ:Gh1Lk70TnvjcDuAiNTIt3rS
Static task
static1
Behavioral task
behavioral1
Sample
8dfb536ce9f3120837fdc61c752b4ac3b82cf1276b2aba3be69c6b7d402961e9.exe
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
8dfb536ce9f3120837fdc61c752b4ac3b82cf1276b2aba3be69c6b7d402961e9.exe
Resource
win10v2004-20240611-en
Malware Config
Extracted
Protocol: smtp- Host:
welingz.com - Port:
587 - Username:
[email protected] - Password:
G~*3]M[P~v1G
Targets
-
-
Target
8dfb536ce9f3120837fdc61c752b4ac3b82cf1276b2aba3be69c6b7d402961e9
-
Size
261KB
-
MD5
2df88875a1249b727af92c5c60a98865
-
SHA1
7642e5513c8b5336f85ea240525138abc851bc0c
-
SHA256
8dfb536ce9f3120837fdc61c752b4ac3b82cf1276b2aba3be69c6b7d402961e9
-
SHA512
74b027cc807d5172e9717a98b1bf5b1d9b3bbf2ceaae25493c3485d63c4dbce9d269c6bb8c600932be65b3ba448a3f26e94a0f4f11b3a1d75732e198f2ab13f9
-
SSDEEP
6144:ADKW1Lgbdl0TBBvjc/EbUjqAENbLN2dWpbmtwArMZ:Gh1Lk70TnvjcDuAiNTIt3rS
Score10/10-
AgentTesla
Agent Tesla is a remote access tool (RAT) written in visual basic.
-