General
-
Target
0x0008000000012028-1385.dat
-
Size
218KB
-
MD5
6540419700023532067d0c46ed61bf10
-
SHA1
6a2bf87eba3c5d884176e5614760380ee6fff0b3
-
SHA256
b99f5a57a5a32d2fe5945cfe309e847dfe75568f0544efef2498def66c895326
-
SHA512
fb3206f2414de8699c888bd84107b1d020d1eeb1f41303b1f12649049633ec115a90a870f5805b2819befc14cc71725e3dae1aab18cec68bb1200a66812c7782
-
SSDEEP
3072:02hCAdhGZBMLyRoKeNTwDagUiqdLnKEXzE7mxsGB8J/kSnp0V5SCHRTTTG2nJ21p:KAaoKtxUfKEwwGGSn2qGVTTG2Jn8EU
Score
10/10
Malware Config
Extracted
Family
agenttesla
C2
https://api.telegram.org/bot5127674234:AAHGscjRk7JCDDCItFO4GPZfan-K7Hc89Z8/sendDocument
Signatures
-
AgentTesla payload 1 IoCs
-
Agenttesla family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
0x0008000000012028-1385.dat
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections