General
-
Target
msedge.exe
-
Size
1.2MB
-
Sample
240329-h47rmsch79
-
MD5
681eba38b74a4e49c60e2afa4645e22f
-
SHA1
1be30752210c8772da802708e531bec578a156f7
-
SHA256
db6599549e8cf96cafe6901d5303fd9c0d08865d72d9677870c151e93110fd92
-
SHA512
82658b0d84731da66b6d556186580730f94a85fe175e52b59590d22b65ea3ab3d57db9eae73c9f6ecd77923edc46137dd5b5036d7bce65a1c655e74f4fa3ae69
-
SSDEEP
24576:V/kyITMvRFhRRbNWoCfkYSEH3OqtwIuX5mIfw+Jwz/S/6g:V/kyITYbNbNWo4kSH3OqtwI+mmw+W7SC
Static task
static1
Behavioral task
behavioral1
Sample
msedge.exe
Resource
win11-20240319-en
Malware Config
Targets
-
-
Target
msedge.exe
-
Size
1.2MB
-
MD5
681eba38b74a4e49c60e2afa4645e22f
-
SHA1
1be30752210c8772da802708e531bec578a156f7
-
SHA256
db6599549e8cf96cafe6901d5303fd9c0d08865d72d9677870c151e93110fd92
-
SHA512
82658b0d84731da66b6d556186580730f94a85fe175e52b59590d22b65ea3ab3d57db9eae73c9f6ecd77923edc46137dd5b5036d7bce65a1c655e74f4fa3ae69
-
SSDEEP
24576:V/kyITMvRFhRRbNWoCfkYSEH3OqtwIuX5mIfw+Jwz/S/6g:V/kyITYbNbNWo4kSH3OqtwI+mmw+W7SC
Score10/10-
AgentTesla
Agent Tesla is a remote access tool (RAT) written in visual basic.
-
AgentTesla payload
-
Downloads MZ/PE file
-
Drops file in System32 directory
-