agenttesla | 5c83f1d308aafd7c108d6fd892b966b0f801fc3a1b95c92c13e99bd16fc57f29

General

Target

5c83f1d308aafd7c108d6fd892b966b0f801fc3a1b95c92c13e99bd16fc57f29
Size

82KB
MD5

28b6eed836341a36f0a1678a39172366
SHA1

d42b93c95234dad7191a2e0fd128fdb686b99483
SHA256

5c83f1d308aafd7c108d6fd892b966b0f801fc3a1b95c92c13e99bd16fc57f29
SHA512

8676e34d72a9b6504f955adafd6a12b95785bd2d03b0b6f01cb3b7105efbd7a7b213edc502527f5b2442baa299bcc735c11d46cdfcd044744d0e441bba4e83eb
SSDEEP

1536:6mg14f+g46F4h44zTuzAkOl5KoBaYa1bHh+8+7i9c31k1XIIA9LMJiI0eIntWWm/:6mg1Hgl4h5TcAnWo4ztB+8+G9E1cA9L0

Score

10^/10

agenttesla

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/700016193224a09353a6063334ad1bf953482761073de651f922a4b9e2b224d0.exe

5c83f1d308aafd7c108d6fd892b966b0f801fc3a1b95c92c13e99bd16fc57f29
.zip

Password: infected
700016193224a09353a6063334ad1bf953482761073de651f922a4b9e2b224d0.exe
.exe windows:4 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 230KB - Virtual size: 230KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ