MalwareBazaar Database
You are currently viewing the MalwareBazaar entry for SHA256 4a139419fd387d4e1e23f36d18c2edbaffd99e1d2f4092b41cde5311087acebf. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.
Database Entry
AgentTesla
Vendor detections: 2
| SHA256 hash: | 4a139419fd387d4e1e23f36d18c2edbaffd99e1d2f4092b41cde5311087acebf |
|---|---|
| SHA3-384 hash: | ac6f6cf349477cd849e2dacf513f0b48030ab392ecd257318e4d4ec05c31b8481c1b4c27c9db4ca3710a57b72d166f58 |
| SHA1 hash: | 7aa4eb6e20c30cb6821d2e645c254bc130c063c2 |
| MD5 hash: | fe943e10477b2d3661a88ba8539de6ea |
| humanhash: | carpet-cup-vermont-march |
| File name: | Files.arj |
| Download: | download sample |
| Signature | AgentTesla |
| File size: | 1'078'879 bytes |
| First seen: | 2020-10-07 08:42:47 UTC |
| Last seen: | Never |
| File type: | arj |
| MIME type: | application/x-rar |
| ssdeep | 24576:N6oTm8uUuQqR2fAfzo229htTalgNL41DpiI7ZRC:N6ymhUuQqR2a2JM8ZWC |
| TLSH | 793533E29B865FE8CA4C635886DCDB880022C69C4B65E27873BB035B1BF50C6D47D59F |
| Reporter |  cocaman |
| Tags: | AgentTesla arj |
cocaman
Malicious email (T1566.001)From: "=?UTF-8?b?0J7RgtC00LXQuyDQvNCw0YDQutC10YLQuNC90LPQsA==?=
<market@kvar.su>"
Received: "from mail.kvar.su (mail.kvar.su [185.6.125.68]) "
Date: "Wed, 7 Oct 2020 11:27:41 +0300"
Subject: "For your Immediate action"
Attachment: "Files.arj"
Intelligence
File Origin
# of uploads :
1
# of downloads :
93
Origin country :
n/a
Vendor Threat Intelligence
Detection(s):
Suspicious file
Please note that we are no longer able to provide a coverage score for Virus Total.
Threat name:
Legit
Score:
0.00
File information
The table below shows additional information about this malware sample such as delivery method and external references.
Malspam
exe Delivery method
Distributed via e-mail attachment
Comments
Login required
You need to login to in order to write a comment. Login with your abuse.ch account.