General

  • Target

    50832b0dc9da55a5058980df89e94b24af34d41d9a0d3cbbd9e6dc7b24693e77

  • Size

    216KB

  • MD5

    5de9c45a89bb940beac3d0db55fa81a5

  • SHA1

    1aed41418c50bc7ba0bc8f4167da7f7954533dfa

  • SHA256

    50832b0dc9da55a5058980df89e94b24af34d41d9a0d3cbbd9e6dc7b24693e77

  • SHA512

    bfaa1c89738d4ff3ca6396f2834bb6a180818ff1a4455f4738fcd1d7d7bc681291cd84e2e7d2e70e9b6503623da3856bc9f01d8bed5aa525e661f946f5a31db1

  • SSDEEP

    3072:2GWrp7zP6PHclnmUAXA6fstBE2fXUidPjN872w/4sFZ/MDI8AOL7kPnjIvm24S12:25N6nsUIC7V4cqDnk79hCU

Score
10/10

Malware Config

Extracted

Family

agenttesla

Credentials

  • Protocol:
    smtp
  • Host:
    smtp.herashipping.in
  • Port:
    587
  • Username:
    [email protected]
  • Password:
    Hera@2011

Signatures

  • AgentTesla payload 1 IoCs
  • Agenttesla family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 50832b0dc9da55a5058980df89e94b24af34d41d9a0d3cbbd9e6dc7b24693e77
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections