General
-
Target
30122024_1127_30122024_FVT6292829-BUC8300382-NFT89392829298.uue
-
Size
644KB
-
Sample
241230-nklmysvmfp
-
MD5
9777b3b7e4679a98b6dafa444da883be
-
SHA1
ff3eaa07861a5efa7dd352f04f1e0c779dd4f5a0
-
SHA256
084b07e9bbdb3317b32ddc6813249ac672c3a1e53001ac913cfe6d1125751b72
-
SHA512
5ff15201dc1b06937379dc17c031e13149534888e81129b5fafe868d14ca5e27cdacdacf0bdc8d9b135c761faf54612d44ff3527c296cd2eb2f0015b1bc50e5f
-
SSDEEP
12288:s/d/p0Y3W8Yhbj9LfqEEmgzZpmWXN2EEqPFDc8n+2YIelvkPMO7xuuJottoWGnPf:s/dR5WWEwNB8q9DbnYIelvkUo7ottaPf
Malware Config
Targets
-
-
Target
FVT6292829-BUC8300382-NFT89392829298.exe
-
Size
1.1MB
-
MD5
f65fe60b3e1498ff7498dada934373ef
-
SHA1
2e57e1d0ccd589b6dd2a1fa2b67ff731bd3babce
-
SHA256
6ec4ae448300d7245fd65ff54769a685183746b61afc378709a08e2e51015510
-
SHA512
d01b1a8b821d817b029fac756d1f0eba966c464afed92afb01c4284d303ef90287fc28f6524abbb01451751946087c2a52ed0d83591c9116f2e283c6df3a6788
-
SSDEEP
24576:ku6J33O0c+JY5UZ+XC0kGso6Fal6xxPCtFnbpFuGWY:eu0c++OCvkGs9Fal63PCLaY
Score10/10-
AgentTesla
Agent Tesla is a remote access tool (RAT) written in visual basic.
-
Agenttesla family
-
Suspicious use of SetThreadContext
-