agenttesla | da4ea0cd1968f675dcb4182473a82284402f4cb3ebfdc3ad46a3f882f66e3bc0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

da4ea0cd1968f675dcb4182473a82284402f4cb3ebfdc3ad46a3f882f66e3bc0
Size

237KB
MD5

000566d28ce60711d72e2f3999944729
SHA1

0ba14cc5026158d8b62e5d4b10ccd9b9b85e60cd
SHA256

da4ea0cd1968f675dcb4182473a82284402f4cb3ebfdc3ad46a3f882f66e3bc0
SHA512

70ca3e87e682d484c906871a7cb45a2aecef9fd30b9413c82d8e9ba6c2c47f71e9f53a4bfb6d97a9dc8dbd18b058cb823711dcbce6ed513fdbcb82d926baa643
SSDEEP

3072:jV5yBBZBZR9thyunEqxgFMJ6xKFKCv0jZQICX52wuLNJ:jV5yBBZBZR9th1nEqxgCiKRc2IC7up

Score

10^/10

agenttesla

Malware Config

Extracted

Family

agenttesla

Credentials

Protocol: smtp
Host:
mail.amedalgroup.one
Port:
587
Username:
[email protected]
Password:
Success4sure2day10@
Email To:
[email protected]

Signatures

Agenttesla family
agenttesla

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
da4ea0cd1968f675dcb4182473a82284402f4cb3ebfdc3ad46a3f882f66e3bc0

Files

da4ea0cd1968f675dcb4182473a82284402f4cb3ebfdc3ad46a3f882f66e3bc0
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 234KB - Virtual size: 240KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ