IoC (TT Malware Log)

Malware の IoC(Indicator)情報

◆注意◆ マルウェア解析専析家向けサイト

     FQDN, URL,IPアドレス等はそのまま掲載しています


** Caution ** Malware expert site

                    FQDN, URL, IP address etc. are posted as they are

トップ > Malware: AgentTesla > AgentTesla (2020/04/18)

AgentTesla (2020/04/18)

Malware: AgentTesla

【インディケータ情報】

■ハッシュ情報(Sha256) - AgentTesla -

c2c1eaf0012413da59fcce9dbf7eea9b72ab45dbb3d17429fe988158a2e5783d
d263aec0a4d338110aaae8c8ed928d7ef52e87a2fecda08663e4600f57c2a4b7
3999d4d2a2422a55d8c2b0abe9dea38443e42a21dc959d69d2c927cb2ae82db4
6fa5c0456337d4d86aeb7831f6396a8da488dab75fa6cc658c2b4f80cc379465
01da3d69232d85e63cf4a972c62271ba6163af065c146541570b62decb963ab0
19fab115271f6e556f2914eb3cdc32311d886bee1b15f0d151ae72211de31228

(以上は NTT Security の情報: 引用元は https://hello.global.ntt/en-us/insights/blog/discovering-a-new-agent-tesla-malware-sample )


■IPアドレス

31.3.251.197
105.112.112.57
105.112.112.78
105.112.112.103
105.112.112.195
105.112.113.12
105.112.113.92
105.112.113.134
105.112.114.55
105.112.114.117
105.112.114.201
105.112.120.27
105.112.121.167

(以上は NTT Security の情報: 引用元は https://hello.global.ntt/en-us/insights/blog/discovering-a-new-agent-tesla-malware-sample )


■FQDN

smtp.ibemakine.com

(以上は NTT Security の情報: 引用元は https://hello.global.ntt/en-us/insights/blog/discovering-a-new-agent-tesla-malware-sample )


■メールアドレス

bk@ibemakine.com
samandre22@yandex.com
samandre222@yandex.com


【検索】

google: c2c1eaf0012413da59fcce9dbf7eea9b72ab45dbb3d17429fe988158a2e5783d
google: d263aec0a4d338110aaae8c8ed928d7ef52e87a2fecda08663e4600f57c2a4b7
google: 3999d4d2a2422a55d8c2b0abe9dea38443e42a21dc959d69d2c927cb2ae82db4
google: 6fa5c0456337d4d86aeb7831f6396a8da488dab75fa6cc658c2b4f80cc379465
google: 01da3d69232d85e63cf4a972c62271ba6163af065c146541570b62decb963ab0
google: 19fab115271f6e556f2914eb3cdc32311d886bee1b15f0d151ae72211de31228


【VT検索】

https://www.virustotal.com/gui/file/c2c1eaf0012413da59fcce9dbf7eea9b72ab45dbb3d17429fe988158a2e5783d
https://www.virustotal.com/gui/file/d263aec0a4d338110aaae8c8ed928d7ef52e87a2fecda08663e4600f57c2a4b7
https://www.virustotal.com/gui/file/3999d4d2a2422a55d8c2b0abe9dea38443e42a21dc959d69d2c927cb2ae82db4
https://www.virustotal.com/gui/file/6fa5c0456337d4d86aeb7831f6396a8da488dab75fa6cc658c2b4f80cc379465
https://www.virustotal.com/gui/file/01da3d69232d85e63cf4a972c62271ba6163af065c146541570b62decb963ab0
https://www.virustotal.com/gui/file/19fab115271f6e556f2914eb3cdc32311d886bee1b15f0d151ae72211de31228


【ブログ】

◆Discovering a new Agent Tesla malware sample (NTT Security, 2019/12/12)
https://hello.global.ntt/en-us/insights/blog/discovering-a-new-agent-tesla-malware-sample
https://malware-log.hatenablog.com/entry/2019/12/12/000000_12