MalwareBazaar Database
You are currently viewing the MalwareBazaar entry for SHA256 132b230f8500bca0013f786638fb06c83fe463b0e2644fc75d3be09be78922d3. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.
Database Entry
AgentTesla
Vendor detections: 4
| SHA256 hash: | 132b230f8500bca0013f786638fb06c83fe463b0e2644fc75d3be09be78922d3 |
|---|---|
| SHA3-384 hash: | 1681e8d7ebd9c3c7546ed4ca15a872512267aa1701db2c58f4a14f438a072c2e3fd1eac3dc214d73c29efd3d0f3459ae |
| SHA1 hash: | f8b1bfa93f0adcbb0140111cfba0c1052eb6199f |
| MD5 hash: | 690b69a1b6ac0eb58f1044d9f40ae0ee |
| humanhash: | mississippi-crazy-apart-mango |
| File name: | NEW URGENT PURCHASE ORDER PRODUCT LIST SHEET 003847 pdf.zip |
| Download: | download sample |
| Signature | AgentTesla |
| File size: | 498'144 bytes |
| First seen: | 2021-01-26 17:33:31 UTC |
| Last seen: | Never |
| File type: | zip |
| MIME type: | application/zip |
| ssdeep | 6144:v3F6cBxkUDv3UUZc9UALSlrcxJ5I20UrKkaBD/Dz5fOzW1gmYutdH4mfgP+wWX9V:96cBOSUUe9dcYxYerpaBD/Jcfu6P59i |
| TLSH | 00B423BBA157C4A60396E6B4705C0528E6E16B21FFE989B5E5ECBDF06F250C00CB5C93 |
| Reporter |  GovCERT_CH |
| Tags: | AgentTesla |
Intelligence
File Origin
# of uploads :
1
# of downloads :
183
Origin country :
n/a
Vendor Threat Intelligence
Detection(s):
Threat name:
Win32.Trojan.Wacatac
Status:
Malicious
First seen:
2021-01-26 14:48:51 UTC
AV detection:
11 of 28 (39.29%)
Threat level:
5/5
Detection(s):
Malicious file
Please note that we are no longer able to provide a coverage score for Virus Total.
Threat name:
Malicious File
Score:
1.00
File information
The table below shows additional information about this malware sample such as delivery method and external references.
Malspam
exe Dropped by
AgentTesla
Delivery method
Distributed via e-mail attachment
Comments
Login required
You need to login to in order to write a comment. Login with your abuse.ch account.