agenttesla | 497c7292d1bd547faadae21dd0b27b9a00c033a75295c9d6cac772c9e6f977ae

General

Target

497c7292d1bd547faadae21dd0b27b9a00c033a75295c9d6cac772c9e6f977ae
Size

83KB
MD5

3a11eb316c340987b21b4ae5e936648a
SHA1

8db4835eb59e264ebd4166f3cbcc4b0b3d91fb61
SHA256

497c7292d1bd547faadae21dd0b27b9a00c033a75295c9d6cac772c9e6f977ae
SHA512

58accc63a0b5eea5b0be9773b745ea340a0d4c12c63ddee1ced92bcf3821f4bac9c6e9207fc6d74c1335fb4237f4ca62c510538c7778796ffa0950ca74d4e379
SSDEEP

1536:w5vrUDmz5eoM7Wy4KkBr8IDhs00rM7rOqXvCyQwwLY:Ur6mYjl46IDr7rXvCLwQY

Score

10^/10

agenttesla

Family

agenttesla

Credentials

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/3094e5f556a928f12da28c70e1eb032e356334382316ddfeac73f6ba84f11e36.exe

497c7292d1bd547faadae21dd0b27b9a00c033a75295c9d6cac772c9e6f977ae
.zip

Password: infected
3094e5f556a928f12da28c70e1eb032e356334382316ddfeac73f6ba84f11e36.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 233KB - Virtual size: 233KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ