MalwareBazaar Database
You are currently viewing the MalwareBazaar entry for SHA256 2fbd6a499b77e353960648e0faf5a6718560432dc0c2cf80398fb849ad88c995. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.
Database Entry
AgentTesla
Vendor detections: 3
| SHA256 hash: | 2fbd6a499b77e353960648e0faf5a6718560432dc0c2cf80398fb849ad88c995 |
|---|---|
| SHA3-384 hash: | 902b2338e7687288a911848de4a83912dcf83b492ec94bb3745becf250b3a79275fab607b6e836cb2b6379ea1a8042ae |
| SHA1 hash: | 2ffe3d3493515c48b55de059b5266d302980cfe1 |
| MD5 hash: | e51ce0309164e700bd815a28725b4a71 |
| humanhash: | victor-timing-single-emma |
| File name: | overdue account letter.rar |
| Download: | download sample |
| Signature | AgentTesla |
| File size: | 720'278 bytes |
| First seen: | 2020-07-08 08:52:55 UTC |
| Last seen: | Never |
| File type: | rar |
| MIME type: | application/x-rar |
| ssdeep | 12288:yqXpCP9Ob1wzeyn9z3LIX5ek5drhp6Kv2afb1ache3OBCA1/2m6GcLGlEsiEtB4m:yqXpyOpwz19z3LIrhp6Kv1fouGDA1/2E |
| TLSH | 57E42382E9EF7037BD944FA6B5A977E4D3A0D8573E007EFFD892802749941C17C8A918 |
| Reporter |  jarumlus |
| Tags: | AgentTesla |
Intelligence
File Origin
# of uploads :
1
# of downloads :
74
Origin country :
n/a
Vendor Threat Intelligence
Threat name:
ByteCode-MSIL.Trojan.AgentTesla
Status:
Malicious
First seen:
2020-07-08 08:54:06 UTC
AV detection:
15 of 29 (51.72%)
Threat level:
5/5
Detection(s):
Malicious file
Please note that we are no longer able to provide a coverage score for Virus Total.
File information
The table below shows additional information about this malware sample such as delivery method and external references.
Malspam
exe Delivery method
Distributed via e-mail attachment
Comments
Login required
You need to login to in order to write a comment. Login with your abuse.ch account.