MalwareBazaar Database
You are currently viewing the MalwareBazaar entry for SHA256 2be5b59ae29cc5d37ab6ad75f554cfa386af9012b503780213e886c3ffda55e6. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.
Database Entry
AgentTesla
Vendor detections: 2
| SHA256 hash: | 2be5b59ae29cc5d37ab6ad75f554cfa386af9012b503780213e886c3ffda55e6 |
|---|---|
| SHA3-384 hash: | 81f6be416aa5b314da376f05213088f627a5e98fe9f74a720fdada7bf7bef81c660275eafed61bd9551f2eff6777a4de |
| SHA1 hash: | 3d1b12388ee490e7daf2f62c17ebb8a4d43bdb47 |
| MD5 hash: | ca002ef488474f47e353abc32bf7db54 |
| humanhash: | michigan-tango-island-cola |
| File name: | Commercial Invoice.ace |
| Download: | download sample |
| Signature | AgentTesla |
| File size: | 275'230 bytes |
| First seen: | 2020-07-01 07:48:50 UTC |
| Last seen: | Never |
| File type: | ace |
| MIME type: | application/octet-stream |
| ssdeep | 6144:/8FtjTbYJZk7g5uuMuwPOCNiBJ9i1I65g1Du10uISqauzHCdW0u7VfC:ctjYvk7GuVuwPipij5000d5zidbu7VfC |
| TLSH | F34423735E3DEBCD4555760B31E5D0E0FBF6AA89732EA8BD17DC02AF296A0C140291A0 |
| Reporter |  jarumlus |
Intelligence
File Origin
# of uploads :
1
# of downloads :
71
Origin country :
n/a
Vendor Threat Intelligence
Threat name:
ByteCode-MSIL.Trojan.Fareit
Status:
Malicious
First seen:
2020-07-01 07:50:05 UTC
AV detection:
11 of 48 (22.92%)
Threat level:
5/5
Please note that we are no longer able to provide a coverage score for Virus Total.
File information
The table below shows additional information about this malware sample such as delivery method and external references.
Malspam
exe Delivery method
Distributed via e-mail attachment
Comments
Login required
You need to login to in order to write a comment. Login with your abuse.ch account.