MalwareBazaar Database
You are currently viewing the MalwareBazaar entry for SHA256 5e26578f49373ffa3ecb418a99b46457f0a5e657032c3c3bc583f43575741132. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.
Database Entry
AgentTesla
Vendor detections: 2
| SHA256 hash: | 5e26578f49373ffa3ecb418a99b46457f0a5e657032c3c3bc583f43575741132 |
|---|---|
| SHA3-384 hash: | d63bc73f1a43526849197915122b079737adb601bcb2e0d796c6824870d357c991d0a7ec27205e7d6ee194ff8d4f7eb7 |
| SHA1 hash: | 24b04b57f8fab562cd0632351355435e3bd373cc |
| MD5 hash: | 311ad7decc9f4652fe2368bfc4f52b07 |
| humanhash: | bulldog-cardinal-social-orange |
| File name: | CAO DUONG CO., LTD Quotation.ace |
| Download: | download sample |
| Signature | AgentTesla |
| File size: | 385'664 bytes |
| First seen: | 2020-12-01 05:59:39 UTC |
| Last seen: | 2020-12-01 08:15:49 UTC |
| File type: | ace |
| MIME type: | application/octet-stream |
| ssdeep | 6144:s/abWuEulhbzzEfhvaF94JBxgDREp7TpybtXF9YDVRUFeFCyLFdynOOfzJyx:yabWuBlhbHIZVJ/O2xp2tXF9YDVAcCyT |
| TLSH | E58423781607F0DF11E7AD300E28F9F32A985075AF28D7C271531A0BE96B91562FA9F4 |
| Reporter |  GovCERT_CH |
Intelligence
File Origin
# of uploads :
3
# of downloads :
112
Origin country :
n/a
Vendor Threat Intelligence
Result
Gathering data
Threat name:
ByteCode-MSIL.Trojan.AgentTesla
Status:
Malicious
First seen:
2020-12-01 01:10:02 UTC
File Type:
Binary (Archive)
Extracted files:
7
AV detection:
19 of 29 (65.52%)
Threat level:
5/5
Please note that we are no longer able to provide a coverage score for Virus Total.
Threat name:
Legit
Score:
0.00
File information
The table below shows additional information about this malware sample such as delivery method and external references.
Malspam
exe Delivery method
Distributed via e-mail attachment
Comments
Login required
You need to login to in order to write a comment. Login with your abuse.ch account.