General
-
Target
168492145596256c55e867a57f85a65c1c0689196634ca7a25568381efe9cb3f2b5ec91b10436.dat-decoded.exe
-
Size
164KB
-
MD5
3ede8b0ab03fc49d78a09bbc8eb57833
-
SHA1
07b931edd93ae5e527c2c9eba335a187fedd408f
-
SHA256
7bb2941c908a15630c6ebd963fe19e0294277e84f3e399a95a75f4d990d687f8
-
SHA512
6759d41985aa4684ed4bc8c5d1b15e5ef8c897e92704446413d40eb4f6dae9411b96008728fcef549f7dd76af27f5a07229a38412c3793a01b6c10d735797925
-
SSDEEP
3072:Xbo0+jMTrw07bVmz1b3+HX4iNt8AZbOw+vR4qBWOIJgFJVEk3xy+I:1T7bVegHX4EthZD+qqBoJoJP8+
Score
10/10
Malware Config
Extracted
Family
agenttesla
Credentials
Protocol: smtp- Host:
mail.prisamexico.net - Port:
587 - Username:
[email protected] - Password:
H!S6_PFHTAN{@ - Email To:
[email protected]
Signatures
-
Agenttesla family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
168492145596256c55e867a57f85a65c1c0689196634ca7a25568381efe9cb3f2b5ec91b10436.dat-decoded.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections