agenttesla | b39e4e2767fea52584562878a5d459abfff847dc926ab8ee0a43f41c0f195aa6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b39e4e2767fea52584562878a5d459abfff847dc926ab8ee0a43f41c0f195aa6
Size

239KB
MD5

b2817eb4a49b225a6bcb23efb6dbefbc
SHA1

8cfdcb72aed4b2ed6cf66fce080b0ea5fdefdb94
SHA256

b39e4e2767fea52584562878a5d459abfff847dc926ab8ee0a43f41c0f195aa6
SHA512

4bb760596d94d5733e2eded8cf4198c6f985a8a02b118dc00fb63772f9b6ea8cf9e619196654cc60125b7c5814000467b6851819ab9e68fd8129ef08039dadfa
SSDEEP

3072:Z+dKlK9QggI4QYbiXIWUfrDtMmMk5hKN57kfC8mqg:sdL9QggI4QY+XJUThV9bKgfD

Score

10^/10

agenttesla

Malware Config

Extracted

Family

agenttesla

Credentials

Protocol: smtp
Host:
terminal4.veeblehosting.com
Port:
587
Username:
[email protected]
Password:
Ifeanyi1987@
Email To:
[email protected]

Signatures

Agenttesla family
agenttesla

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b39e4e2767fea52584562878a5d459abfff847dc926ab8ee0a43f41c0f195aa6

Files

b39e4e2767fea52584562878a5d459abfff847dc926ab8ee0a43f41c0f195aa6
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 236KB - Virtual size: 235KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ