agenttesla | 0x0006000000015c9c-55[.]dat | Triage

Submit
Reports

Overview

overview

Static

static

0x00060000...55.exe

windows7-x64

1

0x00060000...55.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

0x0006000000015c9c-55.exe

Resource

win7-20220812-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

0x0006000000015c9c-55.exe

Resource

win10v2004-20220901-en

collection spyware stealer

windows10-2004-x64

10 signatures

150 seconds

General

Target

0x0006000000015c9c-55.dat
Size

217KB
MD5

dd2566e0bec9744e155b44edcbe1c5fa
SHA1

7083c7cc60588b00785feb82a595118dd983451a
SHA256

a9e02f520f5436790129182638bea82f848cd433b0afff16f72c701a62d17967
SHA512

eb6c81289b3a9c82ef559e7f2069fd3914e6cfcb1b2b45265b4ffdc6e7db1f6134acddfba8f02518c2c81a8d3d1bf47d25c85e995ee61c935d734c657a1ec355
SSDEEP

6144:I33TS7g2U5pGnpwX4O1Be+IhmN9c351S:c0gjL0k9AS

Score

10^/10

agenttesla

Malware Config

Extracted

Family

agenttesla

C2

https://api.telegram.org/bot5171883538:AAEyFWuNh68SJNNpkDCQbviRgrklZA3K4Qs/

Signatures

Agenttesla family
agenttesla

Files

0x0006000000015c9c-55.dat
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 215KB - Virtual size: 214KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 792B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy