agenttesla | file[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

file.exe
Size

208KB
MD5

4bcd5888e5cba293dd12df61c8e60cc2
SHA1

90ba5e73568bfe2067dbf77c1783a1cae80e7c5a
SHA256

50f5fb7fb17407e73ecd900b62cb7c7ff05125086a1d83ecde04d8958ef9a606
SHA512

581e92b01b3c918646b42eaeeb3ea8d634c70187c36c7f9a69bd0ad81bfa93fa0c6bdcee20f2a1635c5bb0aaa92815ba61e9a1d990c6e63697246e783c9a570d
SSDEEP

6144:Q9nSotKtRSVfkoWLmUGmEzCXy7eL2j4XsELfbhgoSNQde:Q9n3KtRSVfsL

Score

10^/10

agenttesla

Malware Config

Signatures

Agenttesla family
agenttesla

Files

file.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 206KB - Virtual size: 206KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 792B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ