Overview

overview

10

Static

static

10

Debug.rar

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    Debug.rar

  • Size

    1.3MB

  • MD5

    e0163893b933f80b873f648bd59e7777

  • SHA1

    9627eb70c906d63c3d35c8e0259420715808753f

  • SHA256

    0aac52ce42df12911ae3be8e91dec42861f89ba46306b22716f711669b6a5619

  • SHA512

    90caf87c836b5a00d8f30c5a60258df6a9f98ae7eb486a37843458629ca4c0bd399671ac500760cc8dcd820cffb0142faf1ebd4b3383b68d6ae0b2fb78154a72

  • SSDEEP

    24576:n1KK6ImbokiLRq3dieSQiua9oHwt9iSVdoaOsEn4Y962I495fmlHZdQoMYh:ncCoo5L4Nn/s+HUsSboaI7IcmlhMm

Score
10/10
agenttesla

Malware Config

Signatures

  • AgentTesla payload 1 IoCs
  • Agenttesla family
    agenttesla
  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • Debug.rar
    .rar

    Password: root

  • Debug/.txt
  • Debug/Guna.UI2.dll
    .dll windows:4 windows x86 arch:x86

    Password: root

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • Debug/M1's Dox Creator.exe
    .exe windows:4 windows x86 arch:x86

    Password: root

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections

  • Debug/M1's Dox Creator.exe.config
  • Debug/M1's Dox Creator.pdb
  • Debug/Newtonsoft.Json.dll
    .dll windows:4 windows x86 arch:x86

    Password: root

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • Debug/Newtonsoft.Json.xml
    .xml
  • Debug/Tulpep.NotificationWindow.dll
    .dll windows:4 windows x86 arch:x86

    Password: root

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections