General
-
Target
4c0dca6d29a7ef1153f8f730ec934571c5b0be25b43f6096ff26e143f6d8b701
-
Size
1.4MB
-
Sample
240701-bc75rsvbjp
-
MD5
e1588f75f06d249baf1761e572233d12
-
SHA1
7b8c3cf2000affbfdeb15807e4bb1048debf1e16
-
SHA256
4c0dca6d29a7ef1153f8f730ec934571c5b0be25b43f6096ff26e143f6d8b701
-
SHA512
0ebd6a10ea0979088e4fabbda01fec2c29bbec07d8c519eb2ed4ef600c53e6639eda45be76a6f849d57b2fc7c993023ffc9b32343bd58187d3e536a58bbd1cdb
-
SSDEEP
24576:cAHnh+eWsN3skA4RV1Hom2KXMmHajyYady5ebPIxn5or5:7h+ZkldoPK8YajdadhGw
Static task
static1
Behavioral task
behavioral1
Sample
4c0dca6d29a7ef1153f8f730ec934571c5b0be25b43f6096ff26e143f6d8b701.exe
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
4c0dca6d29a7ef1153f8f730ec934571c5b0be25b43f6096ff26e143f6d8b701.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
4c0dca6d29a7ef1153f8f730ec934571c5b0be25b43f6096ff26e143f6d8b701
-
Size
1.4MB
-
MD5
e1588f75f06d249baf1761e572233d12
-
SHA1
7b8c3cf2000affbfdeb15807e4bb1048debf1e16
-
SHA256
4c0dca6d29a7ef1153f8f730ec934571c5b0be25b43f6096ff26e143f6d8b701
-
SHA512
0ebd6a10ea0979088e4fabbda01fec2c29bbec07d8c519eb2ed4ef600c53e6639eda45be76a6f849d57b2fc7c993023ffc9b32343bd58187d3e536a58bbd1cdb
-
SSDEEP
24576:cAHnh+eWsN3skA4RV1Hom2KXMmHajyYady5ebPIxn5or5:7h+ZkldoPK8YajdadhGw
Score10/10-
AgentTesla
Agent Tesla is a remote access tool (RAT) written in visual basic.
-
Suspicious use of SetThreadContext
-