Details

_id 5ec84be93533528216613eaa
reference ['https://www.virustotal.com/gui/file/213bc1e79dd9fdc519dc1f286f1d0deae4ab6167aa69989d14c1f756fc6217dc/detection', 'https://www.virustotal.com/gui/file/340b7eeb1ee83ec595d7823cff96bf6d4d8460c699a554532b7e29bba7ab3bcb/detection']
md5 ['76cd2ab2f6ab7842ab8f9ebcb816ba85', '76cd2ab2f6ab7842ab8f9ebcb816ba85']
sha1 ['00e1046e95c144142e84b5f4ae7e44e81758df96', '00e1046e95c144142e84b5f4ae7e44e81758df96']
sha256 ['340b7eeb1ee83ec595d7823cff96bf6d4d8460c699a554532b7e29bba7ab3bcb', '213bc1e79dd9fdc519dc1f286f1d0deae4ab6167aa69989d14c1f756fc6217dc']
mail ['blessmemorejesus@yandex.com']
ip ['185.22.57.165']
domain ['zwillingus.com']
url []
user SilverterrierNG
tweet Latest #AgentTesla #phishing - 185.22.57.165 Sender: Caroline Cardinale<CCardinale@zwillingus.com> Subject: Re: New Purchase Order #39619 Attachment: PO#39619.GZ https://www.virustotal.com/gui/file/340b7eeb1ee83ec595d7823cff96bf6d4d8460c699a554532b7e29bba7ab3bcb/detection … https://www.virustotal.com/gui/file/213bc1e79dd9fdc519dc1f286f1d0deae4ab6167aa69989d14c1f756fc6217dc/detection … Same exfil and creds : blessmemorejesus@yandex.com:07062487004 pic.twitter.com/3fD05LR8hN
id 1263811210530693123
retweets 0
favorites 0
link https://twitter.com/SilverterrierNG/status/1263811210530693123
mentions ['@zwillingus', '@yandex']
hashtags ['#AgentTesla', '#phishing', '#39619', '#39619']
timestamp 1590151047
date 2020-05-22 14:37:27

Tweet