Overview

overview

10

Static

static

10

1b3ecc384f...42.exe

windows7-x64

1

1b3ecc384f...42.exe

windows10-2004-x64

5

Sharing

Copy URL Twitter E-mail

General

  • Target

    1b3ecc384fdbd7c341a962716d4ca8732d3902a5a7cb5907fd0df87d82285d42

  • Size

    215KB

  • MD5

    032bdfb6069169abe3853ffd9b965bbe

  • SHA1

    f42ada750efd97605ded90f7cb391ac11511a935

  • SHA256

    1b3ecc384fdbd7c341a962716d4ca8732d3902a5a7cb5907fd0df87d82285d42

  • SHA512

    a52f6734d4ee33ac549646d93cf67050eb150f75c54c81cbf2af91b7976ce88f5da3fe543f74d930acea4018a5a60291ba2c953e1b3ee35cc7aac2a533e1f864

  • SSDEEP

    3072:tmQiylxCwqlN2xs+UhftUJe6f6Yj78llUToLQjWLUdzQYfEeMZDEAUDTmrYF6SJ:tylo1UwU6fClOoLE1QYTsD5UW0F6

Score
10/10
agenttesla

Malware Config

Extracted

Family

agenttesla

C2

https://api.telegram.org/bot1477073991:AAHETKHcvltq6gsKSlUj-DFCxH7GVnGd9MM/sendDocument

Signatures

  • AgentTesla payload 1 IoCs
  • Agenttesla family
    agenttesla
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 1b3ecc384fdbd7c341a962716d4ca8732d3902a5a7cb5907fd0df87d82285d42
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections