agenttesla | 7108a30943c07911bfe47929ebffbab0_NeikiAnalytics | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7108a30943c07911bfe47929ebffbab0_NeikiAnalytics
Size

245KB
MD5

7108a30943c07911bfe47929ebffbab0
SHA1

b282e595f168e47c75d609a58c9d2e51432f4115
SHA256

537902a0b8916dc1c7d642be4744a96bba5bbca75e1da472f6c465d152fc9aa8
SHA512

ffc82547b6b9b13021699c5ccb2ff17e908366aa5783f523b245f7ba1b04884c8d1a897b1827fc0d5998ee456d59ee828cfc6b9a7fe656840c3ad1fb76172db7
SSDEEP

3072:C4OrvzvbmgO7QhRqJM3azEYkVz8taKot5LBCIIb:UrvzvbmgO7WRqJMfYTaKoNCT

Score

10^/10

agenttesla

Malware Config

Extracted

Family

agenttesla

Credentials

Protocol: smtp
Host:
mail.ykqatar.com
Port:
587
Username:
[email protected]
Password:
Kh831975@
Email To:
[email protected]

Signatures

Agenttesla family
agenttesla

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7108a30943c07911bfe47929ebffbab0_NeikiAnalytics

Files

7108a30943c07911bfe47929ebffbab0_NeikiAnalytics
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 243KB - Virtual size: 242KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ