agenttesla | 83c5f2098fd2af645df8e8801435758ec7d612098ae0d2850f9c03dcb4df3b4e

General

Target

83c5f2098fd2af645df8e8801435758ec7d612098ae0d2850f9c03dcb4df3b4e
Size

86KB
MD5

9f6f2f67bacc5c89e5dd56fa712f866f
SHA1

a97254471559c32eba56d6a2aaf4696b45606915
SHA256

83c5f2098fd2af645df8e8801435758ec7d612098ae0d2850f9c03dcb4df3b4e
SHA512

19f3db5275dfb0194cbe2268556fb7592463f7a080ee54234b49c26c9ae5916a43fb4c1ca38ef5dd0801497b80ab884c66b6fa88d660cf602c5370f164aa15c3
SSDEEP

1536:f43j/5wgT9lmYObEwjqfaXmgMIpOi9u5dlqyOwLJRTOucyZlZ/kHxKq/Mh2t:GjBB9l2bqbw4lqyOwLJtMHxZ/22t

Score

10^/10

agenttesla

Family

agenttesla

Credentials

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/7a976ca005082ab7acea1a46330935bfdfeedf70f37f1707122b7335fa7201ae.exe

83c5f2098fd2af645df8e8801435758ec7d612098ae0d2850f9c03dcb4df3b4e
.zip

Password: infected
7a976ca005082ab7acea1a46330935bfdfeedf70f37f1707122b7335fa7201ae.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 242KB - Virtual size: 242KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ