MalwareBazaar Database
You are currently viewing the MalwareBazaar entry for SHA256 98602c9c6ba763ef977adf04cd5f28f9184c141744f1150ed3381a6a770b0fb2. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.
Database Entry
AgentTesla
Vendor detections: 4
| SHA256 hash: | 98602c9c6ba763ef977adf04cd5f28f9184c141744f1150ed3381a6a770b0fb2 |
|---|---|
| SHA3-384 hash: | e37a0be19dcfcc799d53f65fef90a85fbb06810dcf9a6255e0599e7bcdf1f5c28ef1433d5ae5c37891b233173e376ccc |
| SHA1 hash: | e17a70fcbbe3a4c1316d12aa171f9b4c66a58326 |
| MD5 hash: | 477e38b2d0a20eab6421232206c0ec9c |
| humanhash: | arizona-lake-wolfram-harry |
| File name: | Payment reciept.jpg.ace |
| Download: | download sample |
| Signature | AgentTesla |
| File size: | 495'283 bytes |
| First seen: | 2021-03-11 04:16:40 UTC |
| Last seen: | 2021-03-26 14:27:40 UTC |
| File type: | ace |
| MIME type: | application/octet-stream |
| ssdeep | 12288:ypglzrIOzqgf5Hl4olLOGgUBgFMWrVBPerlLt:ypsIyz1iFhrbPertt |
| TLSH | 43B423D4C3732BFCE6438966E7A90096FA9F312D5B06BE6A7D4D4323B2D66930113718 |
| Reporter |  GovCERT_CH |
| Tags: | AgentTesla |
Intelligence
File Origin
# of uploads :
932
# of downloads :
102
Origin country :
n/a
Vendor Threat Intelligence
Result
Verdict:
MALICIOUS
Threat name:
Win32.Trojan.AgentTesla
Status:
Malicious
First seen:
2021-03-11 02:24:28 UTC
AV detection:
13 of 47 (27.66%)
Threat level:
5/5
Detection(s):
Malicious file
Please note that we are no longer able to provide a coverage score for Virus Total.
Threat name:
Legit
Score:
0.10
File information
The table below shows additional information about this malware sample such as delivery method and external references.
Malspam
exe Dropped by
AgentTesla
Delivery method
Distributed via e-mail attachment
Comments
Login required
You need to login to in order to write a comment. Login with your abuse.ch account.