Overview

overview

10

Static

static

10

af5cd634fd...6d.exe

windows7-x64

10

af5cd634fd...6d.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    af5cd634fd53b797ba2d787adddf6384f8315581960764d4ab7a1362888c836d

  • Size

    1.1MB

  • MD5

    d6f2ba1807a988e838801f70f614567e

  • SHA1

    aa3bb14fea1f3938bd323b25cd57f2c118ef87ff

  • SHA256

    af5cd634fd53b797ba2d787adddf6384f8315581960764d4ab7a1362888c836d

  • SHA512

    b6da1e15de07b8bd789a9cb688c6434e33a3a52186a5654b2ba0b998e61d23fd5ccd4ec5c298a8b912429e8cc8cd0caf2b9a5576c1b8491ce4e254452ed43504

  • SSDEEP

    12288:6hdrrJJ6N4r4wl2+hlaJayxa9jaOQa8adSazGSgaxQaZaxHOauaeY:6hdrrJ/l2alGXGuPP/R+/RO

Score
10/10
agenttesla

Malware Config

Extracted

Family

agenttesla

C2

https://api.telegram.org/bot1481923647:AAGiBTAuCt4mxLt_RWPYNlSpw01yplTkoZI/sendDocument

Signatures

  • AgentTesla payload 1 IoCs
  • Agenttesla family
    agenttesla
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • af5cd634fd53b797ba2d787adddf6384f8315581960764d4ab7a1362888c836d
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections