MalwareBazaar Database
You are currently viewing the MalwareBazaar entry for SHA256 2cb32033930ddcbf952b09b13803e037a3e9982d3fa87d27a083aa61f186e241. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.
Database Entry
AgentTesla
Vendor detections: 4
| SHA256 hash: | 2cb32033930ddcbf952b09b13803e037a3e9982d3fa87d27a083aa61f186e241 |
|---|---|
| SHA3-384 hash: | ebeeb2835cd4dfc2d96201cf4a707d79378a48c9de627eb64a926d99d4c11e749901311851040462c01c2b87cb7e80bf |
| SHA1 hash: | 3e566703a424fd652cce728f6f885b151dd5258a |
| MD5 hash: | b29b4dde421ba93b07946504c148723f |
| humanhash: | kilo-vegan-delta-eighteen |
| File name: | New Order.zip |
| Download: | download sample |
| Signature | AgentTesla |
| File size: | 1'072'347 bytes |
| First seen: | 2020-12-19 07:30:24 UTC |
| Last seen: | 2020-12-19 14:28:56 UTC |
| File type: | zip |
| MIME type: | application/zip |
| ssdeep | 24576:tBCbjDWq9cs6hiv/hGgYQVXbrS2I5XJ4pPviurxqN1SNcAS:tQBSs68hVYQVXPS2IpJ4pPqD/ |
| TLSH | B43533B1DDB417B702893C7FC4CE04D960A827A4A5A021467FE22E699D7C350E9BE737 |
| Reporter |  GovCERT_CH |
| Tags: | AgentTesla |
Intelligence
File Origin
# of uploads :
2
# of downloads :
229
Origin country :
n/a
Vendor Threat Intelligence
Result
Gathering data
Threat name:
ByteCode-MSIL.Trojan.AgentTesla
Status:
Malicious
First seen:
2020-12-18 20:19:00 UTC
AV detection:
7 of 29 (24.14%)
Threat level:
5/5
Detection(s):
Malicious file
Please note that we are no longer able to provide a coverage score for Virus Total.
Threat name:
Kryptik
Score:
1.00
File information
The table below shows additional information about this malware sample such as delivery method and external references.
Malspam
exe Dropped by
AgentTesla
Delivery method
Distributed via e-mail attachment
Comments
Login required
You need to login to in order to write a comment. Login with your abuse.ch account.