General

  • Target

    f368af9fabf23daa1fd8c3aed34d311b80620188f4e5a9135e4a83a8bb878739

  • Size

    218KB

  • MD5

    fbfe19eb65494bcd262b182396ae381d

  • SHA1

    8fc6e322b29f2daffd002d49cbd4d2ec35a47237

  • SHA256

    f368af9fabf23daa1fd8c3aed34d311b80620188f4e5a9135e4a83a8bb878739

  • SHA512

    fb9d581c01168e590a204c61fe805e5a856bb25ffc08f6684ad9ebdf604d8afa5ba87eeefa0415456b5d8df58898e3dbbd1e56a5b4e869209adb657425119447

  • SSDEEP

    3072:ue4ILA+9+eDSMLYe9MlaaB6Ho7vUsycC7X0RpW3zvSmJZ2GXfuffKY6rz/0n0:uzI0emVxIYUdcWc03bH2wfu3KlrL0n

Score
10/10

Malware Config

Extracted

Family

agenttesla

Credentials

  • Protocol:
    smtp
  • Host:
    host39.registrar-servers.com
  • Port:
    587
  • Username:
    [email protected]
  • Password:
    payment 12345

Signatures

  • Agenttesla family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • f368af9fabf23daa1fd8c3aed34d311b80620188f4e5a9135e4a83a8bb878739
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections