General
-
Target
f7f409bfcc8a008aa29e490491758f3cde97df414aa6ad9caa5a648468103a2a
-
Size
1.3MB
-
Sample
240619-bf4xhs1apc
-
MD5
f73db7b20b125730dd700547db7fb822
-
SHA1
f11f32382765af1a0015dcca2b92a82cf6539fee
-
SHA256
f7f409bfcc8a008aa29e490491758f3cde97df414aa6ad9caa5a648468103a2a
-
SHA512
468fb9d81fc1aae7b32a27af5a147dd9efa2156baf9d9795ed23b7d75d68d973de142c06d7b15554674850678611dd7431f30e64c2c643c52ce48422e6243a26
-
SSDEEP
24576:8AHnh+eWsN3skA4RV1Hom2KXMmHaxOjVx/DSstUsM5:bh+ZkldoPK8YaxOxBDSSUP
Static task
static1
Behavioral task
behavioral1
Sample
f7f409bfcc8a008aa29e490491758f3cde97df414aa6ad9caa5a648468103a2a.exe
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
f7f409bfcc8a008aa29e490491758f3cde97df414aa6ad9caa5a648468103a2a.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
f7f409bfcc8a008aa29e490491758f3cde97df414aa6ad9caa5a648468103a2a
-
Size
1.3MB
-
MD5
f73db7b20b125730dd700547db7fb822
-
SHA1
f11f32382765af1a0015dcca2b92a82cf6539fee
-
SHA256
f7f409bfcc8a008aa29e490491758f3cde97df414aa6ad9caa5a648468103a2a
-
SHA512
468fb9d81fc1aae7b32a27af5a147dd9efa2156baf9d9795ed23b7d75d68d973de142c06d7b15554674850678611dd7431f30e64c2c643c52ce48422e6243a26
-
SSDEEP
24576:8AHnh+eWsN3skA4RV1Hom2KXMmHaxOjVx/DSstUsM5:bh+ZkldoPK8YaxOxBDSSUP
Score10/10-
AgentTesla
Agent Tesla is a remote access tool (RAT) written in visual basic.
-
Suspicious use of SetThreadContext
-