Overview

overview

10

Static

static

10

1710178566...ed.exe

windows7-x64

10

1710178566...ed.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1710178566fbf0a8a6e23ccef0f9781bb1f33a2fe89164c091d2255097a08abc03d7698e53136.dat-decoded.exe

  • Size

    238KB

  • MD5

    232be6f79d5197ab3a7378bbababcc06

  • SHA1

    1c2523b16c3e35c230bee71ddf8f251c91a663c2

  • SHA256

    31b5427b86d6f1e9b200d17ebdadeb84e2e58bbb5046b4dba9c5050c0f47ace6

  • SHA512

    38f66b6096969cba611dfa7dc8740c9a1e173192cd57dbbfc53a51a9cd43ac37feba3f500ca73ff7e815fc5183478d093b220da0c617eff6498a8ca39b70c6bf

  • SSDEEP

    3072:evi8wEgsvHLVLWIrnAU/HW6T2Kt6DL5A9g9icVY:Ui8wEgsvHLVLW4nAU/pt6Dgg9

Score
10/10
agenttesla

Malware Config

Extracted

Family

agenttesla

Credentials

  • Protocol:     ftp
  • Host:
    ftp://ftp.stingatoareincendii.ro
  • Port:
    21
  • Username:
    [email protected]
  • Password:
    Q-1HmWsBJgRe

Signatures

  • Agenttesla family
    agenttesla
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 1710178566fbf0a8a6e23ccef0f9781bb1f33a2fe89164c091d2255097a08abc03d7698e53136.dat-decoded.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections