agenttesla | a86533d7-cf6d-4895-8f29-0e12ce2f2ba2[.]exe | Triage

Submit
Reports

Overview

overview

Static

static

a86533d7-c...a2.exe

windows10-1703-x64

a86533d7-c...a2.exe

windows7-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

a86533d7-cf6d-4895-8f29-0e12ce2f2ba2.exe

Resource

win10-20220812-en

agenttesla collection keylogger spyware stealer trojan

windows10-1703-x64

10 signatures

300 seconds

Behavioral task

behavioral2

Sample

a86533d7-cf6d-4895-8f29-0e12ce2f2ba2.exe

Resource

win7-20220812-en

agenttesla collection keylogger spyware stealer trojan

windows7-x64

10 signatures

300 seconds

General

Target

a86533d7-cf6d-4895-8f29-0e12ce2f2ba2.exe
Size

218KB
MD5

edf60f925d1c02e42a855635f423061e
SHA1

cdea0c12dd6fffe72e611580288972aa1c5c9542
SHA256

a6577377b8e15c2dd7c6dd19ce5da3dcae2cd73f4264897e682ff92bdb5f37a1
SHA512

e746bc23f196d479fbeeb0f7ce2469823a5ad5c57200cfb33c712884425fb4fcc79d1e89ec9e304a0b1f7b615824dd8bd312c0be85e5f9ecf4c8c1f6b7d775e0
SSDEEP

6144:e0QsGeC3J6qxUB5NDd4FBdzhUV5uDgwrdNl:VQsa30qAUhUCcul

Score

10^/10

agenttesla

Malware Config

Extracted

Family

agenttesla

Credentials

Protocol: smtp
Host:
mail.parampareaxports.com
Port:
587
Username:
[email protected]
Password:
payment 12345

Signatures

Agenttesla family
agenttesla

Files

a86533d7-cf6d-4895-8f29-0e12ce2f2ba2.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 215KB - Virtual size: 215KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy