Overview

overview

10

Static

static

10

Setup/Setup.exe

windows10-2004-x64

10

Setup/Setup.exe

windows11-21h2-x64

10

Setup/back...se.txt

windows10-2004-x64

1

Setup/back...se.txt

windows11-21h2-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    Setup.zip

  • Size

    112.1MB

  • MD5

    6e9b92f056331b59ea3459d2179b86e6

  • SHA1

    60d56656a66945e633c0550471cd7d93fc7b844c

  • SHA256

    f8ac6d8480960281bff2655f93affa6fed345eb90a7ab4c3f8c7f5abba0ac6ae

  • SHA512

    2af7b8e281543eb8875774207c899a9c4050a151a9c69dc6d00af9dacaff5577ef4da7351e0848c4210f8d42a1672f990d1031a8f888ceae17dc68494da058b2

  • SSDEEP

    1572864:v0BUhh4r2SmJl1cXgvDgjD3NI/0PFZRXP64O4m2vzon9bMiFGf41ariMBosR:aUhh4rgJ8SDkOm7P64O4rvMbGf/ou

Score
10/10
agentteslazgrat

Malware Config

Signatures

  • AgentTesla payload 1 IoCs
  • Agenttesla family
    agenttesla
  • Detect ZGRat V1 1 IoCs
  • Zgrat family
    zgrat
  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • Setup.zip
    .zip

    Password: 1234

  • Setup/Guna.UI2.dll
    .dll windows:4 windows x86 arch:x86

    Password: 1234

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • Setup/Setup.dll
    .exe windows:4 windows x86 arch:x86

    Password: 1234

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections

  • Setup/Setup.exe
    .exe windows:4 windows x86 arch:x86

    Password: 1234

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections

  • Setup/Setup.runtimeconfig.json
  • Setup/aopalliance/aopalliance/1.0/aopalliance-1.0.jar
    .jar
  • Setup/backup/saves/How To Use.txt