TT Malware Log

マルウェア / サイバー攻撃 / 解析技術 に関する「個人」の調査・研究・参照ログ

Discovering a new Agent Tesla malware sample

【図表】

f:id:tanigawa:20200418164122j:plain
出典: https://hello.global.ntt/en-us/insights/blog/discovering-a-new-agent-tesla-malware-sample


【ブログ】

◆Discovering a new Agent Tesla malware sample (NTT Security, 2019/12/12)
https://hello.global.ntt/en-us/insights/blog/discovering-a-new-agent-tesla-malware-sample


【関連まとめ記事】

全体まとめ
 ◆マルウェア / Malware (まとめ)
  ◆バンキングマルウェア (まとめ)

◆AgentTesla (まとめ)
https://malware-log.hatenablog.com/entry/AgentTesla


【インディケータ情報】

■ハッシュ情報(Sha256) - AgentTesla -

c2c1eaf0012413da59fcce9dbf7eea9b72ab45dbb3d17429fe988158a2e5783d
d263aec0a4d338110aaae8c8ed928d7ef52e87a2fecda08663e4600f57c2a4b7
3999d4d2a2422a55d8c2b0abe9dea38443e42a21dc959d69d2c927cb2ae82db4
6fa5c0456337d4d86aeb7831f6396a8da488dab75fa6cc658c2b4f80cc379465
01da3d69232d85e63cf4a972c62271ba6163af065c146541570b62decb963ab0
19fab115271f6e556f2914eb3cdc32311d886bee1b15f0d151ae72211de31228

(以上は NTT Security の情報: 引用元は https://hello.global.ntt/en-us/insights/blog/discovering-a-new-agent-tesla-malware-sample )


■IPアドレス

31.3.251.197
105.112.112.57
105.112.112.78
105.112.112.103
105.112.112.195
105.112.113.12
105.112.113.92
105.112.113.134
105.112.114.55
105.112.114.117
105.112.114.201
105.112.120.27
105.112.121.167

(以上は NTT Security の情報: 引用元は https://hello.global.ntt/en-us/insights/blog/discovering-a-new-agent-tesla-malware-sample )


■FQDN

smtp.ibemakine.com

(以上は NTT Security の情報: 引用元は https://hello.global.ntt/en-us/insights/blog/discovering-a-new-agent-tesla-malware-sample )


■メールアドレス

bk@ibemakine.com
samandre22@yandex.com
samandre222@yandex.com


【検索】

google: c2c1eaf0012413da59fcce9dbf7eea9b72ab45dbb3d17429fe988158a2e5783d
google: d263aec0a4d338110aaae8c8ed928d7ef52e87a2fecda08663e4600f57c2a4b7
google: 3999d4d2a2422a55d8c2b0abe9dea38443e42a21dc959d69d2c927cb2ae82db4
google: 6fa5c0456337d4d86aeb7831f6396a8da488dab75fa6cc658c2b4f80cc379465
google: 01da3d69232d85e63cf4a972c62271ba6163af065c146541570b62decb963ab0
google: 19fab115271f6e556f2914eb3cdc32311d886bee1b15f0d151ae72211de31228


【VT検索】

https://www.virustotal.com/gui/file/c2c1eaf0012413da59fcce9dbf7eea9b72ab45dbb3d17429fe988158a2e5783d
https://www.virustotal.com/gui/file/d263aec0a4d338110aaae8c8ed928d7ef52e87a2fecda08663e4600f57c2a4b7
https://www.virustotal.com/gui/file/3999d4d2a2422a55d8c2b0abe9dea38443e42a21dc959d69d2c927cb2ae82db4
https://www.virustotal.com/gui/file/6fa5c0456337d4d86aeb7831f6396a8da488dab75fa6cc658c2b4f80cc379465
https://www.virustotal.com/gui/file/01da3d69232d85e63cf4a972c62271ba6163af065c146541570b62decb963ab0
https://www.virustotal.com/gui/file/19fab115271f6e556f2914eb3cdc32311d886bee1b15f0d151ae72211de31228


Copyright (C) 谷川哲司 (Tetsuji Tanigawa) 1997 - 2020