MalwareBazaar Database
You are currently viewing the MalwareBazaar entry for SHA256 2467f59504cc7e882e5982b3e999ba8424f4ad28f396eb3decc04c53cf9dcd6e. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.
Database Entry
AgentTesla
Vendor detections: 4
| SHA256 hash: | 2467f59504cc7e882e5982b3e999ba8424f4ad28f396eb3decc04c53cf9dcd6e |
|---|---|
| SHA3-384 hash: | 1d2028efd0ed87673a5a70183a4288d174416c5a173b8bd6e28d0517032db7b97b0ecf74559797ff9d2fa0779dea453f |
| SHA1 hash: | 67e7bf59cc41969b6c85dfc4122a1b74222e7596 |
| MD5 hash: | 04f0df177ccd08c531668d33c4721d35 |
| humanhash: | butter-arizona-undress-seven |
| File name: | Bulk Order - 1017C.zip |
| Download: | download sample |
| Signature | AgentTesla |
| File size: | 402'655 bytes |
| First seen: | 2020-11-25 20:37:04 UTC |
| Last seen: | Never |
| File type: | zip |
| MIME type: | application/zip |
| ssdeep | 12288:FbS4+wb5rdAui0OszjG5XnlGdImPgBE9OGcA:0PwFruAO2G5GImIS9OGF |
| TLSH | 698423365A46DCC966D33F6EA8FC14C869CF7AD210ECCE8E0A2BEC14501C376C586758 |
| Reporter |  fabjer |
| Tags: | archive |
Intelligence
File Origin
# of uploads :
1
# of downloads :
140
Origin country :
n/a
Vendor Threat Intelligence
Result
Gathering data
Threat name:
ByteCode-MSIL.Trojan.AgentTesla
Status:
Malicious
First seen:
2020-11-25 12:37:26 UTC
AV detection:
24 of 29 (82.76%)
Threat level:
5/5
Detection(s):
Malicious file
Please note that we are no longer able to provide a coverage score for Virus Total.
Threat name:
Remcos
Score:
1.00
File information
The table below shows additional information about this malware sample such as delivery method and external references.
Malspam
exe Delivery method
Distributed via e-mail attachment
Comments
Login required
You need to login to in order to write a comment. Login with your abuse.ch account.