General
-
Target
E1B1977304E64BEE19FBD6938F4F7B9541BB7E3DCD8A4B07B7BC22C57F29DD25
-
Size
1.2MB
-
Sample
250103-jqzpjsxqhr
-
MD5
847c36bbe5b395799fc9fda5a349f648
-
SHA1
b64433abd4279165c67aa670fd56c683ba0de825
-
SHA256
e1b1977304e64bee19fbd6938f4f7b9541bb7e3dcd8a4b07b7bc22c57f29dd25
-
SHA512
11f6e3f9d4257a6314aee119ab168ae9dfd797b2a357cad3c12372430e0f139d169262e085890266590749a90c8752a6d526455553cceed30006776dcf9f7018
-
SSDEEP
24576:ffmMv6Ckr7Mny5QLv2USjRR0cMrI4r6XxQcA65SoEHaF1:f3v+7/5QLOTjRlMr36Xx/AuEHa
Malware Config
Targets
-
-
Target
E1B1977304E64BEE19FBD6938F4F7B9541BB7E3DCD8A4B07B7BC22C57F29DD25
-
Size
1.2MB
-
MD5
847c36bbe5b395799fc9fda5a349f648
-
SHA1
b64433abd4279165c67aa670fd56c683ba0de825
-
SHA256
e1b1977304e64bee19fbd6938f4f7b9541bb7e3dcd8a4b07b7bc22c57f29dd25
-
SHA512
11f6e3f9d4257a6314aee119ab168ae9dfd797b2a357cad3c12372430e0f139d169262e085890266590749a90c8752a6d526455553cceed30006776dcf9f7018
-
SSDEEP
24576:ffmMv6Ckr7Mny5QLv2USjRR0cMrI4r6XxQcA65SoEHaF1:f3v+7/5QLOTjRlMr36Xx/AuEHa
Score10/10-
AgentTesla
Agent Tesla is a remote access tool (RAT) written in visual basic.
-
Agenttesla family
-
Accesses Microsoft Outlook profiles
-
Suspicious use of SetThreadContext
-