General
-
Target
42a3811a12773822196fc977fd8172fbe00caf357a36c660a1b0d066e97d3562
-
Size
192KB
-
MD5
9fcafdbba266be8936e251d25023c34b
-
SHA1
4083ac8cd1e256eca8066f77ed11a14198d5cc97
-
SHA256
42a3811a12773822196fc977fd8172fbe00caf357a36c660a1b0d066e97d3562
-
SHA512
11708a5f134d6b1584fd46b86980e0ebeb52fbf9e4637d8905d9ee156f93b88c470f6a2ad4cb64f45ac776b8d9300a10a377d2cc14cd2b95fdbc9896f17219a6
-
SSDEEP
3072:iM1DTu/hnqU1Kz5XvO8gqMipR2wlOqp5IZaiLPuYz9zn35VRubE:iM1ghqGW/vgPiueKPHznTkb
Malware Config
Signatures
-
Agenttesla family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 42a3811a12773822196fc977fd8172fbe00caf357a36c660a1b0d066e97d3562
Files
-
42a3811a12773822196fc977fd8172fbe00caf357a36c660a1b0d066e97d3562.exe windows x86
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 162KB - Virtual size: 161KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ