agenttesla | b7aaf8e1c6c9b7aa529d9286b734514cd464da8dcd6464b2cd19861093ed04ae | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b7aaf8e1c6c9b7aa529d9286b734514cd464da8dcd6464b2cd19861093ed04ae
Size

164KB
MD5

04c750ce05b1981dc0fd2ec9f7b2bed3
SHA1

87984c580718e28985b86ecb818d4f112435cde3
SHA256

b7aaf8e1c6c9b7aa529d9286b734514cd464da8dcd6464b2cd19861093ed04ae
SHA512

038e353ff4b2f7d58581a846381cda04af524c7830088975cab86c46cea6f1a8612190f4e316367827761c574c6ec6b9941c97584295acb3c280a098663fa43a
SSDEEP

3072:tyyaET1EwN1eQhECXPr16+wQhJqeS8tezEToos:tL1Drxxbzv0o

Score

10^/10

agenttesla

Malware Config

Extracted

Family

agenttesla

Credentials

Protocol: smtp
Host:
mail.vector-kl.com
Port:
587
Username:
[email protected]
Password:
ShahVectorKL202)
Email To:
[email protected]

Signatures

Agenttesla family
agenttesla

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b7aaf8e1c6c9b7aa529d9286b734514cd464da8dcd6464b2cd19861093ed04ae

Files

b7aaf8e1c6c9b7aa529d9286b734514cd464da8dcd6464b2cd19861093ed04ae
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 161KB - Virtual size: 161KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ