Overview

overview

10

Static

static

10

Guna.UI2.dll

windows7-x64

1

Guna.UI2.dll

windows10-2004-x64

1

Spoofer.exe

windows7-x64

1

Spoofer.exe

windows10-2004-x64

1

alperenxrq.exe

windows7-x64

3

alperenxrq.exe

windows10-2004-x64

7

runtimes/w...nt.dll

windows7-x64

1

runtimes/w...nt.dll

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    spoofer.rar

  • Size

    11.3MB

  • MD5

    feb9f97e070e374251baa69976ebca2c

  • SHA1

    f9f27c919dac74236e76d7d9e4eaeeb35ae1d4a8

  • SHA256

    afbc475b6b23bfb966b451251d41e7ee0edb0764e1444416123b285c87275b79

  • SHA512

    b1807a85b6dfd2e3aa111d7669db1b845080629aedb809d567ffd774afdf6bacb26616f4c595f932f4c688b4219f3768d144de8e055a42106bf4b01d2e029231

  • SSDEEP

    196608:2XQsufOuiuzz6QbYsKrn9cUTEHydtf/MXfVQi0PzpNhnhbBlfhvX8bgQiX2CJNyD:2XQshuxzz60sjiUTESdpMXfVQiMfhbBC

Score
10/10
agenttesla

Malware Config

Signatures

  • AgentTesla payload 1 IoCs
  • Agenttesla family
    agenttesla
  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • spoofer.rar
    .rar
  • Guna.UI2.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • Spoofer.dll
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections

  • Spoofer.runtimeconfig.json
  • alperenxrq.exe
    .exe windows:6 windows x64 arch:x64

    9704a37628b9b8b45db57d9a53af129e


    Headers

    Imports

    Sections

  • runtimes/win/lib/net6.0/System.Management.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections