General
-
Target
decode_8e0cc5c480bf1b7ee17cb6ded30d55d0eea70392cc65a9bda4197ef8cfc97c4e
-
Size
237KB
-
MD5
01bc9550b13597a76518e751a5883910
-
SHA1
3471a29823e5533945e8b981c34041a086483008
-
SHA256
76c37956d47aeada7e087a7cca0c1da69b6cd2aaaf791f139164a98c664c3dfb
-
SHA512
6330345ca13664e197b643771135101a1cf24e5b65f651183a77d47b228d00027259c2a8a8e0186c5158ab54e2daa0c1a2f129ffb8833164cc3695c9b0a23cea
-
SSDEEP
3072:gCGYtsdIszw3TQ556pASeQyigEfHVfhga6Jq3X/:gNYtlsg0vOASeqca6Q
Score
10/10
Malware Config
Extracted
Family
agenttesla
C2
https://api.telegram.org/bot6131913902:AAGH0nwV24Q3VDY6GaaqmL35deQ8l4_rWVQ/
Signatures
-
Agenttesla family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
decode_8e0cc5c480bf1b7ee17cb6ded30d55d0eea70392cc65a9bda4197ef8cfc97c4e
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections