agenttesla | f3107f1ec7b06c405e044913ec7752eaf22b9f553575e4965de7efed2c4a76ca

General

Target

f3107f1ec7b06c405e044913ec7752eaf22b9f553575e4965de7efed2c4a76ca
Size

84KB
MD5

b0bf45d23def52e6fabf27f18a7cad42
SHA1

9e827baf80268b16d6c7f40c552e23b9c8c814c1
SHA256

f3107f1ec7b06c405e044913ec7752eaf22b9f553575e4965de7efed2c4a76ca
SHA512

39a766f7061dc1a58f9451eaffc366f94455ba71619e5dc66936a51e4b84e6c9726d773f2edab54724870ae276f1e624100b59613075aa144bd4d23053c2b5f1
SSDEEP

1536:gPS+YxDQmGK6fKG5VrBSsG+1mAMKDPh8CNtwINqZAn60/mcsFMp12Avh1EjXPgur:QbYhQzFrBSV+IAMSPRtwIuBFOTQjXour

Score

10^/10

agenttesla

Family

agenttesla

Credentials

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/58ca70be072123fabb9a0316139b2683a6a1fe6c397702312863ff980e2e4d66.exe

f3107f1ec7b06c405e044913ec7752eaf22b9f553575e4965de7efed2c4a76ca
.zip

Password: infected
58ca70be072123fabb9a0316139b2683a6a1fe6c397702312863ff980e2e4d66.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 236KB - Virtual size: 235KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ