General

  • Target

    19aa32880c8b541242f331475396a938_JaffaCakes118

  • Size

    216KB

  • MD5

    19aa32880c8b541242f331475396a938

  • SHA1

    187cdaf629dddbb924d88f94d50bef34f2f7185b

  • SHA256

    feee24e85c6485510921ccb059d8cf70acd09db9b74a229da5012562ddbaeb28

  • SHA512

    4232bf64e6390eaeb621e7ac9cbec2fc8c5aec6d2111e976e0625ac80ddd21f082dd223713d7a2eee68c618b0ed3f079137cbbec591ca578eb7576b7f371aab1

  • SSDEEP

    6144:Emu6uKWqu6OzSUGyFMuqnGpW35olPwUVcZBOTzEUW:EmmYMCI8SHY

Score
10/10

Malware Config

Extracted

Family

agenttesla

C2

http://bot.statusupdate.one/webpanel-calib/mawa/bc75297891923a8f8b78.php

Signatures

  • AgentTesla payload 1 IoCs
  • Agenttesla family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 19aa32880c8b541242f331475396a938_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections