matiex.exe

Status: finished

Submission Time: 2020-07-31 18:34:40 +02:00

Malicious

Trojan

Spyware

AgentTesla Matiex

Engine	Download Report	Detection	Info
		malicious
	Full Report Management Report IOC Report	malicious Score: 72	System: Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01

Name	IP	Detection
checkip.dyndns.org	0.0.0.0
freegeoip.app	104.28.5.151
api.telegram.org	149.154.167.220
Click to see the 2 hidden entries
checkip.dyndns.com	131.186.113.70
g.msn.com	0.0.0.0

Name	Detection
http://crl.godaddy.com/gdroot-g2.crl0F
http://freegeoip.app
http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name
Click to see the 28 hidden entries
http://certificates.godaddy.com/repository/gdig2.crt0
http://api.telegram.org
https://freegeoip.app/xml/91.132.136.174
https://www.geodatatool.com/en/?ip=91.132.136.174
http://checkip.dyndns.com
https://freegeoip.app4
https://api.telegram.org/bot/sendMessage?chat_id=&text=Createutf-8Win32_ComputerSystemModelManufactu
https://freegeoip.appD8
https://freegeoip.app/xml/LoadTimeZoneCountryNameCountryCodehttps://www.geodatatool.com/en/?ip=/
http://crl.godaddy.com/gdroot.crl0F
https://freegeoip.app/xml/91.132.136.174x
http://checkip.dyndns.org/
https://api.telegram.org4
https://freegeoip.app/xml/
http://checkip.dyndns.org4
https://api.telegram.org/bot962940633:AAFWOS5PMSGq49vE3MQVWuNLcoWDhmmugxg/sendDocument?chat_id=13926
http://checkip.dyndns.orgD8
https://certs.godaddy.com/repository/0
http://crl.godaddy.com/gdig2s1-1823.crl0
http://checkip.dyndns.org
https://www.geodatatool.com/en/?ip=
https://freegeoip.app
http://checkip.dyndns.org/HB;jd
http://certs.godaddy.com/repository/1301
http://certificates.godaddy.com/repository/0
https://api.telegram.org/bot
https://api.telegram.org
https://i.imgur.com/GJD7Q5y.png

matiex.exe Options