General
-
Target
b88212aa343596ae71744b662e0895c3.bin
-
Size
85KB
-
MD5
ba1c2bc1b79dd3c8f8cb51c4976b7f61
-
SHA1
9a4c355a8eddd0d93dd5cf9e2cbf0153c9414079
-
SHA256
cd8f4d9dc4dac49b6bcdb3146afa2d5365dbbd8f1b715e43a74cc3c5cd1d7f75
-
SHA512
f081b31cdcd096b083683032489b343b1e19e4cad4c4a58e961d85751975621ae5bf0a6d9c31fddb9ca9aaf539adb61ff16872fffe63b6827fe57d21a13b7edd
-
SSDEEP
1536:ziNxZW8+HsqKlj5rjYZPUcNOONzuuyINKGK/pS/j2rLNDU1xqaK8Mtdttjp:zitjqErMdM+yu4UrCBDU1xDr2dtRp
Score
10/10
Malware Config
Extracted
Family
agenttesla
C2
https://api.telegram.org/bot6726448718:AAFNb-LBktH8UJpC8JcapANsgwJ2jswG9HU/
Signatures
-
Agenttesla family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
b88212aa343596ae71744b662e0895c3.bin
Password: infected
-
d2d1c043548b77e3e0ab6d5f4ac09e7809e11005a73032ad23dbcfa561123dab.exe
Password: infected
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections