agenttesla | 9b691f341ee7bf79920a58bcaa8d036c42e157fa510984a1dfec91e4470c0da4

General

Target

9b691f341ee7bf79920a58bcaa8d036c42e157fa510984a1dfec91e4470c0da4
Size

96KB
MD5

3cfcec5c3849c721e868af5301d109d9
SHA1

89dc66b35d4ec43118c9c72ea2192d4c966c8c5f
SHA256

9b691f341ee7bf79920a58bcaa8d036c42e157fa510984a1dfec91e4470c0da4
SHA512

cfae8fa6f3eb5ae8a3b1fbbdec5a559d5247734ed743bf756c3c533064200383f127caaa8b1487dae32eb4a941a238c8435a21aeab71b2a79045552d03b253b8
SSDEEP

1536:OucrSHSc5LSz/mXx/AX0dqDaZc+r4/jyBdyX/PGAb5OuA4WVfKDg4DsjE4mWH:oJcsrC5AX8qDKc+r4/02PGAbnLQE4HH

Score

10^/10

agenttesla

Family

agenttesla

Credentials

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/agent_tesla_payload/agent_tesla_payload

9b691f341ee7bf79920a58bcaa8d036c42e157fa510984a1dfec91e4470c0da4
.zip

Password: infected
agent_tesla_payload/agent_tesla_payload
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 240KB - Virtual size: 235KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ