MalwareBazaar Database
You are currently viewing the MalwareBazaar entry for SHA256 2ea57ae7330e120dbfe8eceff4ce35bc2eed65659006928f60e2a15e6a8bfa02. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.
Database Entry
AgentTesla
Vendor detections: 4
| SHA256 hash: | 2ea57ae7330e120dbfe8eceff4ce35bc2eed65659006928f60e2a15e6a8bfa02 |
|---|---|
| SHA3-384 hash: | 95da07a5f3eabe40b77dcb8a2a4414f2b7e0faf6d2cb82782991e0602677b1ff2320b67702201106e63f83263de49526 |
| SHA1 hash: | 977442ab895999737e29e37163356c0ee5121d42 |
| MD5 hash: | 2c82204851714df54fb00d962dd61ac8 |
| humanhash: | don-uniform-fix-indigo |
| File name: | IMG-2020727-OWA01-JPG.r11 |
| Download: | download sample |
| Signature | AgentTesla |
| File size: | 450'680 bytes |
| First seen: | 2020-07-28 18:21:29 UTC |
| Last seen: | Never |
| File type: | rar |
| MIME type: | application/x-rar |
| ssdeep | 6144:PL+7nfd6zIBvpZsRP/d0iPb4TP7jaqYhVBt9anmTnybTFsHtA4RFSvCEbE1R6hZ1:P4czEpQPb4b7j30VBmblsHtnRFVEyt4 |
| TLSH | C3A4230E8BF571B328AD2F954769885699C54F7231F12EFBE375BF3349C81168284E82 |
| Reporter |  jarumlus |
| Tags: | AgentTesla |
Intelligence
File Origin
# of uploads :
1
# of downloads :
71
Origin country :
n/a
Vendor Threat Intelligence
Threat name:
ByteCode-MSIL.Spyware.Negasteal
Status:
Malicious
First seen:
2020-07-28 01:00:38 UTC
AV detection:
15 of 29 (51.72%)
Threat level:
2/5
Detection(s):
Suspicious file
Please note that we are no longer able to provide a coverage score for Virus Total.
Threat name:
Spyware
Score:
0.70
File information
The table below shows additional information about this malware sample such as delivery method and external references.
Malspam
exe Delivery method
Distributed via e-mail attachment
Comments
Login required
You need to login to in order to write a comment. Login with your abuse.ch account.