Overview

overview

10

Static

static

10

derrick.exe

windows7-x64

10

derrick.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    derrick.exe

  • Size

    239KB

  • MD5

    79f292504e2687ff3877f5f3a8e142c6

  • SHA1

    22bc2f837d05dc70da48fa32adb2b3d90b899ef0

  • SHA256

    247b6074981847173c995d1d0a45ebc3cd6b4cf64cbb7fc69e16b749b85023a9

  • SHA512

    e5e2c3b773578a3719dfa8a4746f1e29a3b05bfc5cdeee0d5b769fea2ccfef560e3c37de82f3636c2f04c67b200fecb9166bcae08e59eaf696193f0d875af15a

  • SSDEEP

    3072:wdjH7vrHas5px9KjxpkZ/5qV6N5DgSWVXYMu4O+:wdjH7vrHas5pxgPkZ/5qV68SWJ

Score
10/10
agenttesla

Malware Config

Extracted

Family

agenttesla

C2

https://discordapp.com/api/webhooks/1209058275480445018/H-McbOnJpNYHQhHKLtNjlZha3IvLrUjGthxLuHaQ_h5rrm_C7srttGVVmosCSmH6SFWx

Signatures

  • Agenttesla family
    agenttesla
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • derrick.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections