bec 2905bk00123.exe

Status: finished

Submission Time: 2020-05-28 17:17:01 +02:00

Malicious

Ransomware

Trojan

Spyware

Evader

AgentTesla

Engine	Download Report	Detection	Info
	Full Report Management Report IOC Report	malicious Score: 100	System: Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01

malicious

Score: 10/70

Name	IP	Detection
site-cdn.onenote.net	0.0.0.0
www.mediafire.com	104.16.202.237
smtp.yandex.ru	77.88.21.158
Click to see the 2 hidden entries
download1163.mediafire.com	205.196.122.104
smtp.yandex.com	0.0.0.0

Name	Detection
https://pV6s9vVyo9qzgkjekSl.org
https://www.mediafire.com/file/y5pwzn9cfp14skc/origin_KpByGzql114.bin/file
http://repository.certum.pl/ycasha2.cer0
Click to see the 22 hidden entries
https://download1163.mediafire.com/cbtuji2nmecg/y5pwzn9cfp14skc/origin_KpByGzql114.bin
http://www.certum.pl/CPS0
http://crl.certum.pl/ca.crl0h
https://pV6s9vVyo9qzgkjekSl.orgX)
http://subca.ocsp-certum.com01
http://crls.yandex.net/certum/ycasha2.crl0-
http://repository.certum.pl/ca.cer09
http://subca.ocsp-certum.com0.
http://crl.us
http://yandex.ocsp-responder.com03
https://download1163.mediafire.com/
http://ocsp.sectigo.com0)
http://go.microsoft.LinkId=42127
https://www.certum.pl/CPS0
https://www.mediafire.com
http://go.microsoft.
http://yandex.crl.certum.pl/ycasha2.crl0q
http://crl.certum.pl/ctnca.crl0k
http://repository.certum.pl/ctnca.cer09
https://sectigo.com/CPS0
https://www.mediafire.com/
http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt0#

bec 2905bk00123.exe Options