MalwareBazaar Database
You are currently viewing the MalwareBazaar entry for SHA256 80a8fff7a5bfe08ec5641b97d380414f7d3186478635a53b80824e3309f79c1a. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.
Database Entry
AgentTesla
Vendor detections: 3
| SHA256 hash: | 80a8fff7a5bfe08ec5641b97d380414f7d3186478635a53b80824e3309f79c1a |
|---|---|
| SHA3-384 hash: | aa82707dc568dc53cc70a5031d7152c8407fa54fbada8f552538dc425b7fcbe5e9fe8e58e03ff8406b14d80c1f2c1ee6 |
| SHA1 hash: | a79beed4310bb08bbe9dae0d338108092d48c015 |
| MD5 hash: | 19aa0ada0f4f2004053e2f76b0576c7e |
| humanhash: | glucose-kentucky-nuts-april |
| File name: | Invoice.zip |
| Download: | download sample |
| Signature | AgentTesla |
| File size: | 406'872 bytes |
| First seen: | 2020-05-13 04:08:27 UTC |
| Last seen: | Never |
| File type: | zip |
| MIME type: | application/zip |
| ssdeep | 12288:qpQrDT6G4KbzV+qtkP0VWaP/vEHbHq0hGNbfF:q6WObkqts0MaXKKYGNbd |
| TLSH | 41842347CA9200CB11A522DDEE7F370F3C01615419D0AABDF772A51E52A97AFA54283F |
| Reporter |  jarumlus |
| Tags: | AgentTesla |
Intelligence
File Origin
# of uploads :
1
# of downloads :
76
Origin country :
n/a
Vendor Threat Intelligence
Gathering data
Threat name:
ByteCode-MSIL.Trojan.Grp
Status:
Malicious
First seen:
2020-05-13 03:07:06 UTC
AV detection:
27 of 48 (56.25%)
Threat level:
2/5
Detection(s):
Suspicious file
Please note that we are no longer able to provide a coverage score for Virus Total.
File information
The table below shows additional information about this malware sample such as delivery method and external references.
Malspam
exe Delivery method
Distributed via e-mail attachment
Comments
Login required
You need to login to in order to write a comment. Login with your abuse.ch account.