General
-
Target
aaa6ab107d16737cacfbadead55c61e6f26dede745218c51ae728af3d0194822
-
Size
216KB
-
MD5
98445e6d9c2e9cb39d78408109759edd
-
SHA1
a3589caa685f0f43f1076be93171a17eadf9f609
-
SHA256
aaa6ab107d16737cacfbadead55c61e6f26dede745218c51ae728af3d0194822
-
SHA512
727c7b8e2f8f776aaa846397db1594deb4c5e24584d80a0163dbb81df73fbcb24270ab831fce0869c1086175ee38eb175e71e7a25103482a3fdbcbb39cece1a4
-
SSDEEP
3072:HGWQqMENUVJiCn1yaQUUss5GzAWIy82P83SbN1ub30A+/N+qki/jnR8tUCeS:H0JiCAMU+zlIpWyTUEqkirRAUC
Score
10/10
Malware Config
Extracted
Family
agenttesla
C2
https://api.telegram.org/bot2062652208:AAEyc-7xEcUOQxNpdlexOidqQZT1Fi23E0A/sendDocument
Signatures
-
AgentTesla payload 1 IoCs
-
Agenttesla family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
aaa6ab107d16737cacfbadead55c61e6f26dede745218c51ae728af3d0194822
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections