General
-
Target
cffbec3de2c5f49bf961020c76b1872986f02990e57cbd2a0aa25052d037e27b
-
Size
216KB
-
MD5
8ba2c84414f3551e6248a01bfc0a2a94
-
SHA1
b89ef84da103263d1c7d8e79406456eed6a98bde
-
SHA256
cffbec3de2c5f49bf961020c76b1872986f02990e57cbd2a0aa25052d037e27b
-
SHA512
47c8d854270130b9a535661cbd1620718bcf3fadd4d3bf626b9e802344d2837d9a247336ef9fce18432d80533676d30abc7d416322941a6664558008a1e07023
-
SSDEEP
3072:1GW2lGofQRYTI7OLad5UsvQ1fWWIaEOFlg2Fibub30z+GU8iMZvwrUVtUqWZ:1FYTIyqUDf7ICBDTOPvwgLUq
Score
10/10
Malware Config
Extracted
Family
agenttesla
C2
https://api.telegram.org/bot5018803528:AAF827TPdghibhwIsXfFBD-fJV8u6rD6LMU/sendDocument
Signatures
-
AgentTesla payload 1 IoCs
-
Agenttesla family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
cffbec3de2c5f49bf961020c76b1872986f02990e57cbd2a0aa25052d037e27b
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections