agenttesla | 7e50e6c3d7843328d380d18a2294dac6189bd099f2241ae0cd01b061ea3935d1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7e50e6c3d7843328d380d18a2294dac6189bd099f2241ae0cd01b061ea3935d1
Size

245KB
MD5

3156064d0c6ed46a2c9494eb4c168e7d
SHA1

969aaa3af5ba47b18015e1108732f1455b2df28d
SHA256

7e50e6c3d7843328d380d18a2294dac6189bd099f2241ae0cd01b061ea3935d1
SHA512

63e756497448b333bdf963a3183f05713434f3dddc7f92c7f1856969548dc8fc9b101ef6afa68ebe9e43998f46666d076b34b85112791cf88ff48e9646122aac
SSDEEP

3072:Z/oMbLUQkoUmAhTpQa6LdK3tKCtI2i55q0i+3j:ZXLUQkoUmAhTpQlLyKCtX10L

Score

10^/10

agenttesla

Malware Config

Extracted

Family

agenttesla

Credentials

Protocol: smtp
Host:
mail.softtricksmedia.com
Port:
587
Username:
[email protected]
Password:
soft#!7som7
Email To:
[email protected]

Signatures

Agenttesla family
agenttesla

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7e50e6c3d7843328d380d18a2294dac6189bd099f2241ae0cd01b061ea3935d1

Files

7e50e6c3d7843328d380d18a2294dac6189bd099f2241ae0cd01b061ea3935d1
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 242KB - Virtual size: 242KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ