Overview

overview

10

Static

static

10

d190dc87c5...6f.exe

windows7-x64

3

d190dc87c5...6f.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    d190dc87c5d7679c9d2d308ffd159b7f54a53dfa5f497576464cf75682cad06f

  • Size

    215KB

  • MD5

    a0ceae51005ba1ee962be27b8d47baa7

  • SHA1

    641535ec6e788af642549385afff8639b9b77c9e

  • SHA256

    d190dc87c5d7679c9d2d308ffd159b7f54a53dfa5f497576464cf75682cad06f

  • SHA512

    7ea105acca62e90d2eed3ace99fcc99300243198974aded70bab5fddee989fc2a9883fdcd45e5a683f8514c4fc9160c56ff46af0a87ee57c8feaacfbd454c55f

  • SSDEEP

    3072:m50pID9p1cJ3n5GQqy4c+UXUl0HoJLNrefxujnqQG9CcRfiHRS86aK54QuLYD3Om:UwGTU/IJLOYqQI6HRS86ZwUD

Score
10/10
agenttesla

Malware Config

Extracted

Family

agenttesla

Credentials

  • Protocol:     smtp
  • Host:
    smtp.epaindemgroup.com
  • Port:
    587
  • Username:
    [email protected]
  • Password:
    uur0bhYc

Signatures

  • AgentTesla payload 1 IoCs
  • Agenttesla family
    agenttesla
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • d190dc87c5d7679c9d2d308ffd159b7f54a53dfa5f497576464cf75682cad06f
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections