agenttesla | 7f26c50d9cc81d9586f652c0c04a2c6ca2adca2882920aed62ae16c99ef1f511 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7f26c50d9cc81d9586f652c0c04a2c6ca2adca2882920aed62ae16c99ef1f511
Size

236KB
MD5

05e8455d793d83bc394cd4bfbbecbec0
SHA1

1a54b12b38484ee69191ce9b40d88c78be9cc3a0
SHA256

7f26c50d9cc81d9586f652c0c04a2c6ca2adca2882920aed62ae16c99ef1f511
SHA512

7740df543d57ba0eb955e1650709811404b9af7a1ab5e47736314589e661c7f64853d8e74667f75840ba633bb769a09b87b1680d698b3ee8117df49d7d61a10a
SSDEEP

3072:lmlqpdQfhh0zHd+kk0kqtmUoQTa2qOKP+A/i5Z3C1mf+:lPdQfhWzHd+kk0kqtmtQzqOKP7iS1K

Score

10^/10

agenttesla

Malware Config

Extracted

Family

agenttesla

Credentials

Protocol: smtp
Host:
mail.starmech.net
Port:
587
Username:
[email protected]
Password:
nics123
Email To:
[email protected]

Signatures

Agenttesla family
agenttesla

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7f26c50d9cc81d9586f652c0c04a2c6ca2adca2882920aed62ae16c99ef1f511

Files

7f26c50d9cc81d9586f652c0c04a2c6ca2adca2882920aed62ae16c99ef1f511
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 234KB - Virtual size: 233KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ