General
-
Target
SecuriteInfo.com.Win32.Evo-gen.1540.18028.exe
-
Size
4.9MB
-
Sample
240625-lcf2dsvalr
-
MD5
aff7c6f482127bf6424990db3e9d99dc
-
SHA1
9a1a362c6c97661dee992db053073599cf009c63
-
SHA256
2b6c6b7a7b4ea5723a15a92ce376e7818f7ab58f4dc5944275932440bf4e2b09
-
SHA512
568f1c881c85fd3d204299b240b9956325f3b10c35af16dc995ec3de732c6b7c3f8133e9c0459ea2262080243acc9529c5f61e95f98e45cb06cec71901a0d43d
-
SSDEEP
98304:Ry3PsgGTLA/OnosRa94IM+y2lZGbKsTTwwfZb26uu0dFPb99m/KVF:aPsdoOOM+VlCKMTjhR5WFPb3UKz
Static task
static1
Behavioral task
behavioral1
Sample
SecuriteInfo.com.Win32.Evo-gen.1540.18028.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
SecuriteInfo.com.Win32.Evo-gen.1540.18028.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
SecuriteInfo.com.Win32.Evo-gen.1540.18028.exe
-
Size
4.9MB
-
MD5
aff7c6f482127bf6424990db3e9d99dc
-
SHA1
9a1a362c6c97661dee992db053073599cf009c63
-
SHA256
2b6c6b7a7b4ea5723a15a92ce376e7818f7ab58f4dc5944275932440bf4e2b09
-
SHA512
568f1c881c85fd3d204299b240b9956325f3b10c35af16dc995ec3de732c6b7c3f8133e9c0459ea2262080243acc9529c5f61e95f98e45cb06cec71901a0d43d
-
SSDEEP
98304:Ry3PsgGTLA/OnosRa94IM+y2lZGbKsTTwwfZb26uu0dFPb99m/KVF:aPsdoOOM+VlCKMTjhR5WFPb3UKz
Score10/10-
AgentTesla
Agent Tesla is a remote access tool (RAT) written in visual basic.
-
AgentTesla payload
-