MalwareBazaar Database
You are currently viewing the MalwareBazaar entry for SHA256 538e48c5a99a1a7777cc41f5f9b20eda9287a92f51cb29401c163a951515e8b6. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.
Database Entry
AgentTesla
Vendor detections: 3
| SHA256 hash: | 538e48c5a99a1a7777cc41f5f9b20eda9287a92f51cb29401c163a951515e8b6 |
|---|---|
| SHA3-384 hash: | 13b008578cb71f31f262b49db78a6f36786d4dced2903414988fa7298ea4b9aed0b8b1f0d05675535266a0b9c0c8d8ea |
| SHA1 hash: | 1c16144d151fcb0e939bbbadcab865c6e196f55b |
| MD5 hash: | 2873a19d6ecce74872e5550a98c0acac |
| humanhash: | autumn-mockingbird-hydrogen-xray |
| File name: | NEW ORDER INQUIRY.Z |
| Download: | download sample |
| Signature | AgentTesla |
| File size: | 430'751 bytes |
| First seen: | 2020-04-15 05:02:57 UTC |
| Last seen: | 2020-04-16 04:13:39 UTC |
| File type: | z |
| MIME type: | application/x-rar |
| ssdeep | 6144:+wiDDL3QJy36k715JF0G6vS93HUa2P+e80nU0aSZNov0VE2kx9sn7XLk5UAO9QIx:+wwLNJOG6vd12e80UQov0u2xkO9Nspy9 |
| TLSH | EB94234FBB14D45C953A4122C4A83F89BCDF53DEF5E076748C14EDAE2690CB0B907996 |
| Reporter |  cocaman |
| Tags: | AgentTesla z |
Intelligence
File Origin
# of uploads :
2
# of downloads :
77
Origin country :
n/a
Vendor Threat Intelligence
Detection(s):
Gathering data
Threat name:
ByteCode-MSIL.Trojan.Kryptik
Status:
Malicious
First seen:
2020-04-15 05:35:37 UTC
File Type:
Binary (Archive)
Extracted files:
2
AV detection:
20 of 31 (64.52%)
Threat level:
2/5
Detection(s):
Malicious file
Please note that we are no longer able to provide a coverage score for Virus Total.
File information
The table below shows additional information about this malware sample such as delivery method and external references.
Malspam
exe Delivery method
Distributed via e-mail attachment
Comments
Login required
You need to login to in order to write a comment. Login with your abuse.ch account.