MalwareBazaar Database
You are currently viewing the MalwareBazaar entry for SHA256 370f9a9da79e9c6cace3e00b4ab3a3e61d28a578444ed4e3cf2f286a74af7130. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.
Database Entry
AgentTesla
Vendor detections: 3
| SHA256 hash: | 370f9a9da79e9c6cace3e00b4ab3a3e61d28a578444ed4e3cf2f286a74af7130 |
|---|---|
| SHA3-384 hash: | 33fcdec2f17b9744852bd199d5b27e892b1ba43ff1386bbaa536b9982c254c366f083aa48f358ee52b1672534d8ffe51 |
| SHA1 hash: | 9860fc7959bb31aa4cd56748701850e3959ce48c |
| MD5 hash: | a19ca8e596d6e27846b7daf1e8d8fdfd |
| humanhash: | winner-blue-stream-east |
| File name: | August Outstanding Payments.rar |
| Download: | download sample |
| Signature | AgentTesla |
| File size: | 681'816 bytes |
| First seen: | 2020-09-01 07:44:37 UTC |
| Last seen: | 2020-09-01 08:04:37 UTC |
| File type: | rar |
| MIME type: | application/x-rar |
| ssdeep | 12288:V+06Cnme41IkCusdGijc9X5pwID6NYVSMsE5hQQnlDz8AyHba2Lh89IjvVzUiJkn:V+0Znme41IkSNwl5GIDqYcMsEgQnlDzF |
| TLSH | 0CE433797752DB077D0F717BEE8B150B1E325C4FBD88E0CA2916B071EC1484AE5E6684 |
| Reporter |  cocaman |
| Tags: | AgentTesla rar |
Intelligence
File Origin
# of uploads :
2
# of downloads :
89
Origin country :
n/a
Vendor Threat Intelligence
Threat name:
ByteCode-MSIL.Trojan.Kryptik
Status:
Malicious
First seen:
2020-09-01 07:46:06 UTC
File Type:
Binary (Archive)
Extracted files:
42
AV detection:
9 of 48 (18.75%)
Threat level:
5/5
Detection(s):
Malicious file
Please note that we are no longer able to provide a coverage score for Virus Total.
Threat name:
Legit
Score:
0.00
File information
The table below shows additional information about this malware sample such as delivery method and external references.
Malspam
Delivery method
Distributed via e-mail attachment
Comments
Login required
You need to login to in order to write a comment. Login with your abuse.ch account.