agenttesla | 41df4d3585a08545989b285e6aad0abada9d457ae437e9abdc169bd7e66dcc91_JC[.]exe | Triage

Sharing

General

Target

41df4d3585a08545989b285e6aad0abada9d457ae437e9abdc169bd7e66dcc91_JC.exe
Size

238KB
MD5

5b3c222b7554df5dd2dfe06f4ac288e8
SHA1

dc2f7c29fa1294552d693b5d631f9c7bfe01c69a
SHA256

41df4d3585a08545989b285e6aad0abada9d457ae437e9abdc169bd7e66dcc91
SHA512

0b6323a9ceabb94aeadbe8e5b47a6e4bfb4ee91a7433082e951e1ba123c70619a2d1ea35561d5cc1512b2b511e369949447748350074fb1eb7bf31e0cbe03881
SSDEEP

3072:IJF33uKu7JBpdyPud/NdX++5OGZB2b4UninQVt:IJF33iBpdyP6PX++5TZB2b4UiQ

Score

10^/10

agenttesla

Malware Config

Extracted

Family

agenttesla

Credentials

Protocol: smtp
Host:
aebezz.com
Port:
587
Username:
[email protected]
Password:
Bukky101@
Email To:
[email protected]

Signatures

Agenttesla family
agenttesla

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
41df4d3585a08545989b285e6aad0abada9d457ae437e9abdc169bd7e66dcc91_JC.exe

Files

41df4d3585a08545989b285e6aad0abada9d457ae437e9abdc169bd7e66dcc91_JC.exe
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 236KB - Virtual size: 235KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ