MalwareBazaar Database
You are currently viewing the MalwareBazaar entry for SHA256 965adf7a1801c316be90b2d244035375e97d07198230e61e88eaa40ce45ff93b. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.
Database Entry
AgentTesla
Vendor detections: 3
| SHA256 hash: | 965adf7a1801c316be90b2d244035375e97d07198230e61e88eaa40ce45ff93b |
|---|---|
| SHA3-384 hash: | 28e4b9f9fc32b26c4eb66b056683604d11f7ce9da56b7426045244d6672acb2b26f0265ab888126dda2b8210e9da7fd6 |
| SHA1 hash: | a1e6a100f8424df551ada45dc827790c284c38a3 |
| MD5 hash: | 9bf364759cdf9efae4f91658bb2c7e46 |
| humanhash: | orange-dakota-saturn-princess |
| File name: | Swift Copy.gz |
| Download: | download sample |
| Signature | AgentTesla |
| File size: | 389'143 bytes |
| First seen: | 2020-06-15 15:09:34 UTC |
| Last seen: | 2020-06-20 19:28:19 UTC |
| File type: | gz |
| MIME type: | application/x-rar |
| ssdeep | 6144:je74/Hm+5sxpewC/yEryGO+LnBV1/b/WbFpRl2Rem5RjbceWZw2PL+9VSmHOaFw3:jeqmq4kLyGyGVXYFx2Em5A09VSmHOaFu |
| TLSH | 0884232143307783D63CBFAE09AF0C825E2EBA8152C0BD6595BD346D52985DDE08B4FA |
| Reporter |  jarumlus |
| Tags: | AgentTesla |
Intelligence
File Origin
# of uploads :
3
# of downloads :
61
Origin country :
n/a
Vendor Threat Intelligence
Gathering data
Threat name:
ByteCode-MSIL.Trojan.AgentTesla
Status:
Malicious
First seen:
2020-06-15 15:11:03 UTC
AV detection:
17 of 31 (54.84%)
Threat level:
5/5
Detection(s):
Malicious file
Please note that we are no longer able to provide a coverage score for Virus Total.
File information
The table below shows additional information about this malware sample such as delivery method and external references.
Malspam
exe Delivery method
Distributed via e-mail attachment
Comments
Login required
You need to login to in order to write a comment. Login with your abuse.ch account.