MalwareBazaar Database
You are currently viewing the MalwareBazaar entry for SHA256 30cbbd43cc17df7a25d49cf51c396bdc5644b407eaf281cc24c6231ab08d6e90. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.
Database Entry
AgentTesla
Vendor detections: 2
| SHA256 hash: | 30cbbd43cc17df7a25d49cf51c396bdc5644b407eaf281cc24c6231ab08d6e90 |
|---|---|
| SHA3-384 hash: | f7dfe9e2851b408f3518ea89a56d0a75a8e1c13be72475463c1cdb49d51beb6b2b9c5a11d3dff351ff7e18ec7080670c |
| SHA1 hash: | 3e181dbe9c611946afd95ac197b5489877cfc4d1 |
| MD5 hash: | d46e679ca980777680885df1ac3df7c0 |
| humanhash: | lithium-artist-white-blue |
| File name: | DHL - Pending delivery.7z |
| Download: | download sample |
| Signature | AgentTesla |
| File size: | 654'562 bytes |
| First seen: | 2020-11-13 06:54:22 UTC |
| Last seen: | 2020-11-13 09:09:37 UTC |
| File type: | 7z |
| MIME type: | application/x-7z-compressed |
| ssdeep | 12288:9qRqJLhvpPKWvT/NljU9EbpF3qU9pO+prwz3acsyvWOF2opDxOy:IRuhtKkrNi9ElBqU6GwWy+62opDxOy |
| TLSH | 64D43350117C58EDC6AB3533CEE92049C209AD4B6E6D2E23447F1FDE4BA20BF19A1DC6 |
| Reporter |  cocaman |
| Tags: | 7z AgentTesla |
Intelligence
File Origin
# of uploads :
2
# of downloads :
120
Origin country :
n/a
Vendor Threat Intelligence
Result
Gathering data
Threat name:
Win32.Trojan.AgentTesla
Status:
Malicious
First seen:
2020-11-13 06:55:06 UTC
File Type:
Binary (Archive)
Extracted files:
34
AV detection:
16 of 29 (55.17%)
Threat level:
5/5
Please note that we are no longer able to provide a coverage score for Virus Total.
File information
The table below shows additional information about this malware sample such as delivery method and external references.
Malspam
exe Delivery method
Distributed via e-mail attachment
Dropping
AgentTesla
Comments
Login required
You need to login to in order to write a comment. Login with your abuse.ch account.