General
-
Target
cb437025033cfa2d66250e73d6b9ece8401ef62b038d41597ca0a2970577cf46
-
Size
164KB
-
MD5
b6580019db45eda443f35df76d3b018f
-
SHA1
597f929a65fe737171652c6ef8ca8b525653a415
-
SHA256
cb437025033cfa2d66250e73d6b9ece8401ef62b038d41597ca0a2970577cf46
-
SHA512
e21cfcc8c06cb901360c9e58989d08d1e775cc607d7076c7d9afad8b4454dffb30a371c87e00ea7b84c89cbfdf17b81c3011ff271a49674bc50e022dfae09df8
-
SSDEEP
3072:fFdJ+FZUhBgB1DjjkuVnEngbvApKRnvDkXTFZl:QUzWHjvjZp4XJZ
Score
10/10
Malware Config
Extracted
Family
agenttesla
Credentials
Protocol: smtp- Host:
beracas.com - Port:
587 - Username:
[email protected] - Password:
W4})=!Y3iN3r - Email To:
[email protected]
Signatures
-
Agenttesla family
-
Detect packed .NET executables. Mostly AgentTeslaV4. 1 IoCs
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
cb437025033cfa2d66250e73d6b9ece8401ef62b038d41597ca0a2970577cf46
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections