General
-
Target
de33e5936f21cdc596ea54216b8c373a2acfed9b3527b31109d8c4e9bc1d288d
-
Size
1.3MB
-
Sample
240430-berkssff48
-
MD5
d92e29d88405e9a0047557d3f0e7cd69
-
SHA1
865dc31980298f951f5229c0526d784b531649a8
-
SHA256
de33e5936f21cdc596ea54216b8c373a2acfed9b3527b31109d8c4e9bc1d288d
-
SHA512
b777608922c9d946c1d712d905095e97ecdc5164e37d366be6fe46f4132a8bb186d55a5592624ccad1ba2d4359b8a57233024d897f0a45670b51049d2faa42f9
-
SSDEEP
24576:QAHnh+eWsN3skA4RV1Hom2KXMmHa3ju0NlfVJojr5:Hh+ZkldoPK8Ya3S0rVm
Static task
static1
Behavioral task
behavioral1
Sample
de33e5936f21cdc596ea54216b8c373a2acfed9b3527b31109d8c4e9bc1d288d.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
de33e5936f21cdc596ea54216b8c373a2acfed9b3527b31109d8c4e9bc1d288d.exe
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
de33e5936f21cdc596ea54216b8c373a2acfed9b3527b31109d8c4e9bc1d288d
-
Size
1.3MB
-
MD5
d92e29d88405e9a0047557d3f0e7cd69
-
SHA1
865dc31980298f951f5229c0526d784b531649a8
-
SHA256
de33e5936f21cdc596ea54216b8c373a2acfed9b3527b31109d8c4e9bc1d288d
-
SHA512
b777608922c9d946c1d712d905095e97ecdc5164e37d366be6fe46f4132a8bb186d55a5592624ccad1ba2d4359b8a57233024d897f0a45670b51049d2faa42f9
-
SSDEEP
24576:QAHnh+eWsN3skA4RV1Hom2KXMmHa3ju0NlfVJojr5:Hh+ZkldoPK8Ya3S0rVm
-
AgentTesla
Agent Tesla is a remote access tool (RAT) written in visual basic.
-
Detect ZGRat V1
-
Suspicious use of SetThreadContext
-