agenttesla | 9921ab9bdaced4a981d2d1b15f06697f909379212761773da9d6972260843342

General

Target

9921ab9bdaced4a981d2d1b15f06697f909379212761773da9d6972260843342
Size

192KB
MD5

4fe44fde2b76005c45b1705e2f2ec9ae
SHA1

ddc9ef4008e126e238f0292e8c0f530d0c79a3e4
SHA256

9921ab9bdaced4a981d2d1b15f06697f909379212761773da9d6972260843342
SHA512

b3207aaeaaa94951c7d6fcf9c660450807b2a2ce2a8c84f29e1cf0f6911e96e105318c1f33882039dc8a8a5b4f154885229ffd579b963d81ceacea7692a6e212
SSDEEP

3072:11v1X4jT1w7/PUJL1BzCbIwb402rEBdQ7DoOLDwj/:11Gpw7/PCB8kLrQdNz

Score

10^/10

agenttesla

Detect packed .NET executables. Mostly AgentTeslaV4. 1 IoCs

resource	yara_rule
sample	INDICATOR_EXE_Packed_GEN01

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9921ab9bdaced4a981d2d1b15f06697f909379212761773da9d6972260843342