MalwareBazaar Database
You are currently viewing the MalwareBazaar entry for SHA256 24db22b40b01af7bab207d09b7cd430a5892d646ed6291e416643e546d86ced4. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.
Database Entry
AgentTesla
Vendor detections: 3
| SHA256 hash: | 24db22b40b01af7bab207d09b7cd430a5892d646ed6291e416643e546d86ced4 |
|---|---|
| SHA3-384 hash: | 7ebeb3d7e1b12cbcfdc721f80c38ddcd59d12aca60cd02673dc2318a1691eca019c5944729f186ca1882874626da1a83 |
| SHA1 hash: | ebc05e1fb6d6c192bc5c61272c2ce375501c22cc |
| MD5 hash: | 20a058d7813d4247191dd5c80a53043b |
| humanhash: | quiet-social-nuts-utah |
| File name: | MV Christos Theo.doc.rar |
| Download: | download sample |
| Signature | AgentTesla |
| File size: | 420'449 bytes |
| First seen: | 2020-06-08 04:15:01 UTC |
| Last seen: | Never |
| File type: | rar |
| MIME type: | application/x-rar |
| ssdeep | 12288:tMYnmJWXi7ZyRF7fCL/1RPmEb1J+J5LrMhA:tMYH2ZifCL/1RPBpJ+fD |
| TLSH | 149423466E8AF5B35633012F780F58E21817EEFBB887154CC54453E49E43DE08AEA7DA |
| Reporter |  jarumlus |
Intelligence
File Origin
# of uploads :
1
# of downloads :
63
Origin country :
n/a
Vendor Threat Intelligence
Detection(s):
Gathering data
Threat name:
ByteCode-MSIL.Trojan.Kryptik
Status:
Malicious
First seen:
2020-06-08 04:16:05 UTC
AV detection:
16 of 31 (51.61%)
Threat level:
5/5
Detection(s):
Suspicious file
Please note that we are no longer able to provide a coverage score for Virus Total.
File information
The table below shows additional information about this malware sample such as delivery method and external references.
Malspam
exe Delivery method
Distributed via e-mail attachment
Comments
Login required
You need to login to in order to write a comment. Login with your abuse.ch account.