agenttesla | f512964aa117fbbb2a0521367867c8403a612da3d488c91eeaae1b9ce7c4d682

General

Target

f512964aa117fbbb2a0521367867c8403a612da3d488c91eeaae1b9ce7c4d682
Size

86KB
MD5

adcd42e40ea596440750cb361fd31847
SHA1

e7dee5bebfc3e7f0e0fd9f8c0a6237764c9e1e5e
SHA256

f512964aa117fbbb2a0521367867c8403a612da3d488c91eeaae1b9ce7c4d682
SHA512

ea2e0bd21dd721022d5769754ec3ff640490ebf492bc78dddccdd075b1dc1a08592130564012905c6885b52fbf8b56314112aa723ee5e2ecd22053f6dbdfac62
SSDEEP

1536:d9EnDF1Xe9CdG7RUJ6InCIHZGaWjVbmHSHiK8D2LPvFmFVjiqTQO4C9+WtJ:UnPVQRUJ6InZGHVSHSCjD2UTftVtJ

Score

10^/10

agenttesla

Family

agenttesla

Credentials

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/b6bf7ea5c0f0751bddd457c4a67af44ff5048a6108c57662b49ff43ec5f780a9.exe

f512964aa117fbbb2a0521367867c8403a612da3d488c91eeaae1b9ce7c4d682
.zip

Password: infected
b6bf7ea5c0f0751bddd457c4a67af44ff5048a6108c57662b49ff43ec5f780a9.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 241KB - Virtual size: 241KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ