agenttesla | a0690460355704ff1a35f16f907ed3d4af190b150e8579e70984c0ee484ece8c | Triage

Submit
Reports

Overview

overview

Static

static

PEDIDO#496...df.exe

windows7_x64

PEDIDO#496...df.exe

windows10-2004_x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

PEDIDO#4965832-pdf.exe

Resource

win7-20220414-en

agenttesla agilenet collection keylogger spyware stealer trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

PEDIDO#4965832-pdf.exe

Resource

win10v2004-20220414-en

agenttesla collection keylogger spyware stealer trojan

windows10-2004_x64

0 signatures

0 seconds

Errors

Reason

config extraction: missing cfgextr callback for rule "Gozi_FJ_loader_0"

General

Target

a0690460355704ff1a35f16f907ed3d4af190b150e8579e70984c0ee484ece8c
Size

329KB
MD5

f65099b3ee5e47b049a1191b54ec8508
SHA1

ca806be4311666eb42ed6cae1702c0cef0cd6eda
SHA256

a0690460355704ff1a35f16f907ed3d4af190b150e8579e70984c0ee484ece8c
SHA512

d7ec23fa614bbd3c695d2957740760dbd452cfb5726351d73fd545535d563b70ed33e5de179c4bc6635db1830d8936a5dd99b1625a895fe54b46effd6338129b
SSDEEP

6144:UFEAY2TfYFaB0yWE7O5Pwi9Vq6w5XqXbxS+JLjs02kIA57Vhil:nAY2TQFaBhoSiC6pHw05bVVhil

Score

10^/10

agenttesla

Malware Config

Signatures

Agenttesla family
agenttesla

Files

a0690460355704ff1a35f16f907ed3d4af190b150e8579e70984c0ee484ece8c
.zip
PEDIDO#4965832-pdf.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 763KB - Virtual size: 763KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy