MalwareBazaar Database
You are currently viewing the MalwareBazaar entry for SHA256 eeb2a6f961e6f9508a6890531be1ad2e6f6635257cc3a7a5899e95169c3625aa. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.
Database Entry
AgentTesla
Vendor detections: 4
| SHA256 hash: | eeb2a6f961e6f9508a6890531be1ad2e6f6635257cc3a7a5899e95169c3625aa |
|---|---|
| SHA3-384 hash: | 55345d1f8af013b140bc8ea2c8e3a8f7c3f13030d4d75965fe1b5ea27acc42f278d46ead05997ea388e818fe8cda248c |
| SHA1 hash: | 817e6309fb67d096362cc318aa84956def93e8df |
| MD5 hash: | 90d3b33f2f8c208394e9bf263ca378c6 |
| humanhash: | crazy-hamper-one-pluto |
| File name: | AWB - Invoices & Packing_Lists (ASGPT_01220113808130).z |
| Download: | download sample |
| Signature | AgentTesla |
| File size: | 587'833 bytes |
| First seen: | 2020-11-10 13:34:37 UTC |
| Last seen: | Never |
| File type: | z |
| MIME type: | application/x-rar |
| ssdeep | 12288:eOPi13FxaR+W3P/m9Is7Saxc0o2ADEt6trS4/4tD9tTvuqocPP7Fg:eV11xaMWES+ctVEtLXtbuqochg |
| TLSH | 47C4233A8ED163AA09A61C0C1CEDBBE05F044A0962455D2FB241FEF55E5F2D69013BEF |
| Reporter |  GovCERT_CH |
| Tags: | AgentTesla |
Intelligence
File Origin
# of uploads :
1
# of downloads :
193
Origin country :
n/a
Vendor Threat Intelligence
Result
Gathering data
Threat name:
Win32.Trojan.Generic
Status:
Suspicious
First seen:
2020-11-10 07:11:31 UTC
AV detection:
7 of 48 (14.58%)
Threat level:
5/5
Detection(s):
Malicious file
Please note that we are no longer able to provide a coverage score for Virus Total.
Threat name:
AgentTesla
Score:
1.00
File information
The table below shows additional information about this malware sample such as delivery method and external references.
Malspam
exe Dropped by
AgentTesla
Delivery method
Distributed via e-mail attachment
Comments
Login required
You need to login to in order to write a comment. Login with your abuse.ch account.