MalwareBazaar Database
You are currently viewing the MalwareBazaar entry for SHA256 4a1b348b72e3da588d936d79677a83f49afc41e0cc9aed27c5041a89383be25a. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.
Database Entry
AgentTesla
Vendor detections: 3
| SHA256 hash: | 4a1b348b72e3da588d936d79677a83f49afc41e0cc9aed27c5041a89383be25a |
|---|---|
| SHA3-384 hash: | cfcac5eeb960bd0f08ba5077ce7745efb3cd8b12432fcbfcc16bc61e2465233fd3cb28e07e6b58919c66b58341d78bbd |
| SHA1 hash: | 0ed8bbdea90d4a970887153232bb4f12820f5937 |
| MD5 hash: | e5e69183c1dc812f8106bdc37fe1b16a |
| humanhash: | yellow-hydrogen-hawaii-utah |
| File name: | Shipping Documents PL&BL Draft.img |
| Download: | download sample |
| Signature | AgentTesla |
| File size: | 765'952 bytes |
| First seen: | 2020-04-01 06:40:54 UTC |
| Last seen: | Never |
| File type: | img |
| MIME type: | application/x-iso9660-image |
| ssdeep | 6144:DMtN0VRIzjSVtVaQsebIpySAuYMKPeWwg2pEyorbIPZDPKR15v35GuupVz5g:QtN9zjg3axNCuYt32eFEZuR15vp6A |
| TLSH | D0F4BF12FA01C654C610227244EDA9AC6723F9C723628A1E764E93396F73EC7FE4D94D |
| Reporter |  cocaman |
| Tags: | AgentTesla img |
Intelligence
File Origin
# of uploads :
1
# of downloads :
75
Origin country :
n/a
Vendor Threat Intelligence
Gathering data
Threat name:
ByteCode-MSIL.Trojan.Rdn
Status:
Malicious
First seen:
2020-04-01 03:30:10 UTC
File Type:
Binary (Archive)
Extracted files:
6
AV detection:
17 of 31 (54.84%)
Threat level:
2/5
Detection(s):
Malicious file
Please note that we are no longer able to provide a coverage score for Virus Total.
File information
The table below shows additional information about this malware sample such as delivery method and external references.
Malspam
exe Delivery method
Distributed via e-mail attachment
Comments
Login required
You need to login to in order to write a comment. Login with your abuse.ch account.