agenttesla | 5d2a9e82b6098813fa230152de286f7712b5608f[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5d2a9e82b6098813fa230152de286f7712b5608f.exe
Size

333KB
MD5

c1dfee07e576cc6c114bbe662788fe3a
SHA1

5d2a9e82b6098813fa230152de286f7712b5608f
SHA256

97dd39be1fa39f6c492968185bca20892db1d22b3b04ee8241d59da511bcfa28
SHA512

da947d5aac7a02b2731ed484941ce584d6002e27ebccfa51e37fddb2aa90351a2aaac9d86af4c53f4c28a77350e360bf6d025f589eabe3c06b49ef96361067ec
SSDEEP

6144:BFhd/LDhzE9ztQYkYk/DOSJ22QGw4c3SGg6eYvqbW:5d/HG0YNSJ22mL7

Score

10^/10

agenttesla

Malware Config

Signatures

AgentTesla payload 1 IoCs

resource	yara_rule
sample	family_agenttesla

Agenttesla family
agenttesla

Files

5d2a9e82b6098813fa230152de286f7712b5608f.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 330KB - Virtual size: 330KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 880B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ