General
-
Target
BS-Path_v2 (1).rar
-
Size
699KB
-
Sample
240408-m2l5dafe47
-
MD5
3ff10483cbda6a3ce2127fd080b2e3cc
-
SHA1
d363ddd7dde0ebcc036a52da84f7441576d9bc6c
-
SHA256
d88e380d8f5891818c7b3649a6bae574b44a6a23775fc88232b3eae38b4cd9ed
-
SHA512
cb6d145644e58a4cd722052095f2994eaffba56493565594c51a002f97c010c99c2496be236c922d7df04bda572b1a907fd08deb432a749cb9c85d52d2f30a7b
-
SSDEEP
12288:FaFVmOAhdHxdPLn931grPRhzkZJXNQTIWGk9HzA1YB/DhBo190lUNU:IrATxdDgfzEJXGTGkW1YB7o19CU2
Behavioral task
behavioral1
Sample
Bs Path.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
Bs Path.exe
Resource
win10v2004-20240226-en
Behavioral task
behavioral3
Sample
Guna.UI2.dll
Resource
win7-20240221-en
Behavioral task
behavioral4
Sample
Guna.UI2.dll
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
Bs Path.exe
-
Size
58KB
-
MD5
4049f8e8269304aa4fbfc6cd7f09e441
-
SHA1
9e56510ddb1fcf2e52c0116e84d37c649e29c4b1
-
SHA256
a90b6dc9c22cd91f3a72f07cf02eacdd75b1e15fa3340c3a9a7b5ac5523c7556
-
SHA512
166fe832f67ef172d2599b4a46e70721d765778a02c217c0aa6c1356eaff5013bba7f1cd09a0fbada14f35c7b4b84eabe5c6698d61ab36c28e98e5b87b25b268
-
SSDEEP
768:RvgHjuL3PNCXMPR4GRPNChwtYcFwVc6K:NeiIMyAccwVcl
Score10/10-
AgentTesla
Agent Tesla is a remote access tool (RAT) written in visual basic.
-
AgentTesla payload
-
-
-
Target
Guna.UI2.dll
-
Size
2.1MB
-
MD5
c19e9e6a4bc1b668d19505a0437e7f7e
-
SHA1
73be712aef4baa6e9dabfc237b5c039f62a847fa
-
SHA256
9ac8b65e5c13292a8e564187c1e7446adc4230228b669383bd7b07035ab99a82
-
SHA512
b6cd0af436459f35a97db2d928120c53d3691533b01e4f0e8b382f2bd81d9a9a2c57e5e2aa6ade9d6a1746d5c4b2ef6c88d3a0cf519424b34445d0d30aab61de
-
SSDEEP
49152:6QNztBO2+VN7N3HtnPhx70ZO4+CPXOn5PThDH2TBeHjvjiBckYf+Yh/FJ3:6Ahck2z
Score1/10 -