Overview

overview

10

Static

static

10

fbdffca120...b0.exe

windows7-x64

1

fbdffca120...b0.exe

windows10-2004-x64

5

Sharing

Copy URL Twitter E-mail

General

  • Target

    fbdffca120600a8872a35adddf98c02b6545030df183a58cd4206fff68f2cbb0

  • Size

    216KB

  • MD5

    7c7deded10a9a9bb890ff19662195b42

  • SHA1

    f0f5ec2ad7730f9aa5dda73d3aabac731d8da708

  • SHA256

    fbdffca120600a8872a35adddf98c02b6545030df183a58cd4206fff68f2cbb0

  • SHA512

    e03e3f353efbde1d8d6717fb85c4ef0161a5454e1a21017b298d2dfa017b684045c6b855655f7e85f3a188cab89aa67284ce08402fb0d339e10e878ed8e2d0f8

  • SSDEEP

    6144:HPyRZbUV5UDdv/KIundDu+HM2F0UWW/Pfc:vyRZoVwdv/KIundDu+H7WQP

Score
10/10
agenttesla

Malware Config

Extracted

Family

agenttesla

Credentials

  • Protocol:     smtp
  • Host:
    mail.alwahatmc.com.qa
  • Port:
    587
  • Username:
    [email protected]
  • Password:
    tmc#123

Signatures

  • AgentTesla payload 1 IoCs
  • Agenttesla family
    agenttesla
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • fbdffca120600a8872a35adddf98c02b6545030df183a58cd4206fff68f2cbb0
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections