MalwareBazaar Database
You are currently viewing the MalwareBazaar entry for SHA256 dff30fa828310712705da7c105f0e757f681f12aded8bd1c152d49fe4da62ec3. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.
Database Entry
AgentTesla
Vendor detections: 4
| SHA256 hash: | dff30fa828310712705da7c105f0e757f681f12aded8bd1c152d49fe4da62ec3 |
|---|---|
| SHA3-384 hash: | 1ab0f7e0751dd9310cb19e14325c3022b5f43685c511f8317807432fe2e597ae22b89e03e480c3bc3b2a067af07f9cee |
| SHA1 hash: | 2bf36ee45f847dc60a0228564faff6e37d1ba3ca |
| MD5 hash: | 9bd3142c4990ff4149cf0eb584bfa863 |
| humanhash: | may-autumn-asparagus-michigan |
| File name: | RFQ#(10098764).pdf.gz |
| Download: | download sample |
| Signature | AgentTesla |
| File size: | 320'282 bytes |
| First seen: | 2020-07-23 23:51:57 UTC |
| Last seen: | 2020-07-25 17:56:50 UTC |
| File type: | gz |
| MIME type: | application/x-rar |
| ssdeep | 6144:aQmJpUrysbUea92/pF3UlzobGyKQkblQz3sFUHIGfa0H9Zz7XA1cbIZ6:u+Sib3UNob7RkblQ4aHxHn5W6 |
| TLSH | 8064231DAB91AC0B19878E6FA3448E3F9E4F9B9540A07407019FBA52E5E27C674F3C47 |
| Reporter |  jarumlus |
| Tags: | AgentTesla |
Intelligence
File Origin
# of uploads :
6
# of downloads :
69
Origin country :
n/a
Vendor Threat Intelligence
Threat name:
ByteCode-MSIL.Trojan.Masslogger
Status:
Malicious
First seen:
2020-07-23 04:14:21 UTC
AV detection:
17 of 29 (58.62%)
Threat level:
5/5
Detection(s):
Suspicious file
Please note that we are no longer able to provide a coverage score for Virus Total.
Threat name:
Kryptik
Score:
1.00
File information
The table below shows additional information about this malware sample such as delivery method and external references.
Malspam
exe Dropped by
AgentTesla
Delivery method
Distributed via e-mail attachment
Comments
Login required
You need to login to in order to write a comment. Login with your abuse.ch account.