agenttesla | 73bad62ba0c03d7e67ed85730c44360e5f87590a95a89480f6f7ee369c6f115e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

73bad62ba0c03d7e67ed85730c44360e5f87590a95a89480f6f7ee369c6f115e
Size

167KB
MD5

58fe49df68ab60cf9fed90f4dd250a64
SHA1

90d5215fd6f2f4cde201e445f2baaaf3d0137310
SHA256

73bad62ba0c03d7e67ed85730c44360e5f87590a95a89480f6f7ee369c6f115e
SHA512

844dc26f3c567729af4d7da66f202a13be34567a5deafd3af4e75693ffa043023172c6b5e0dd8acc48472f94a04b402667dc11e6bb1009a87e65d8c9c9e724b2
SSDEEP

3072:6cZRBsaXdNmZOzPuDJygE3Bd4++9RqXwoAbr1OFHhdv:6kXsaPzaJYoqXwowcX

Score

10^/10

agenttesla

Malware Config

Extracted

Family

agenttesla

Credentials

Protocol: smtp
Host:
smtp.beckukk.com
Port:
587
Username:
[email protected]
Password:
infinity147
Email To:
[email protected]

Signatures

Agenttesla family
agenttesla

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
73bad62ba0c03d7e67ed85730c44360e5f87590a95a89480f6f7ee369c6f115e

Files

73bad62ba0c03d7e67ed85730c44360e5f87590a95a89480f6f7ee369c6f115e
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 165KB - Virtual size: 164KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ