General

  • Target

    609e38e067e3a764cb62d60c911b42d8c617c9ce622afdc308fe09327e248d9c.zip

  • Size

    2.0MB

  • MD5

    45dc1c7001860dcf9693c5ffc58ef592

  • SHA1

    d76e7523c2965dd846a89f5922070cd09d26a8ef

  • SHA256

    609e38e067e3a764cb62d60c911b42d8c617c9ce622afdc308fe09327e248d9c

  • SHA512

    fa49fd15981006a5f95dc005bd6c2cd645ef9db98f2afb082d88856849f58b2da7e34709283a3610ff6904d4eafe86418b895dde6a993f87eccded098f19fc1c

  • SSDEEP

    49152:DhHUWZzAjo7WtlkAdgagDcKAamsloQGgFhatjv1er0Z/gLyar9Oj8g8V:+WZzCTl5bgDNAarl1Oj9eQKfy8L

Score
10/10

Malware Config

Signatures

  • AgentTesla payload 1 IoCs
  • Agenttesla family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 609e38e067e3a764cb62d60c911b42d8c617c9ce622afdc308fe09327e248d9c.zip
    .zip
  • Guna.UI2.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • InjectorStarter.bat
    .bat .vbs
  • Newtonsoft.Json.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • bin/api-ms-win-crt-heap-l1-1-0.dll
    .dll windows:10 windows x64 arch:x64


    Code Sign

    Headers

    Exports

    Sections

  • bin/api-ms-win-crt-locale-l1-1-0.dll
    .dll windows:10 windows x64 arch:x64


    Code Sign

    Headers

    Exports

    Sections

  • bin/api-ms-win-crt-math-l1-1-0.dll
    .dll windows:10 windows x64 arch:x64


    Code Sign

    Headers

    Exports

    Sections

  • bin/api-ms-win-crt-multibyte-l1-1-0.dll
    .dll windows:10 windows x64 arch:x64


    Code Sign

    Headers

    Exports

    Sections

  • bin/api-ms-win-crt-private-l1-1-0.dll
    .dll windows:10 windows x64 arch:x64


    Code Sign

    Headers

    Exports

    Sections

  • bin/api-ms-win-crt-process-l1-1-0.dll
    .dll windows:10 windows x64 arch:x64


    Code Sign

    Headers

    Exports

    Sections

  • bin/api-ms-win-crt-runtime-l1-1-0.dll
    .dll windows:10 windows x64 arch:x64


    Code Sign

    Headers

    Exports

    Sections

  • bin/api-ms-win-crt-stdio-l1-1-0.dll
    .dll windows:10 windows x64 arch:x64


    Code Sign

    Headers

    Exports

    Sections

  • bin/api-ms-win-crt-string-l1-1-0.dll
    .dll windows:10 windows x64 arch:x64


    Code Sign

    Headers

    Exports

    Sections

  • bin/api-ms-win-crt-time-l1-1-0.dll
    .dll windows:10 windows x64 arch:x64


    Code Sign

    Headers

    Exports

    Sections

  • bin/api-ms-win-crt-utility-l1-1-0.dll
    .dll windows:10 windows x64 arch:x64


    Code Sign

    Headers

    Exports

    Sections

  • bin/clrcompression.dll
    .dll windows:6 windows x64 arch:x64

    5c60dda7f0e42c4ab1a4510cd287d92f


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • bin/clretwrc.dll
    .dll windows:6 windows x64 arch:x64


    Code Sign

    Headers

    Sections

  • dnlib.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections