agenttesla | a7f4dad1036b8347428afb49344abe75ca12be09c146577861e6cc559de85251 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a7f4dad1036b8347428afb49344abe75ca12be09c146577861e6cc559de85251
Size

238KB
MD5

a8c8bca7f1900d54a5b11f58d9dca085
SHA1

c3546d7ce37f1a8b266ab8fb0eb6151b60c6be51
SHA256

a7f4dad1036b8347428afb49344abe75ca12be09c146577861e6cc559de85251
SHA512

d092ef11dde65516c8cd846fab5630683a9f7b4324ac781e7ab787941622d41257a8d9e98c4855189ba7d45b2692ab73d9f28f01b572236e2252da94e2b1fcbd
SSDEEP

3072:5X9XPH4B3ze/1PXPiFGW3evr3KDpwh5n8Z7YV5:5tXPH4BC/BP2GWuz3KDpwIZc

Score

10^/10

agenttesla

Malware Config

Extracted

Family

agenttesla

Credentials

Protocol: smtp
Host:
smtppro.zoho.com
Port:
587
Username:
[email protected]
Password:
chijioke1990
Email To:
[email protected]

Signatures

Agenttesla family
agenttesla

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a7f4dad1036b8347428afb49344abe75ca12be09c146577861e6cc559de85251

Files

a7f4dad1036b8347428afb49344abe75ca12be09c146577861e6cc559de85251
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 235KB - Virtual size: 235KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ