agenttesla | 1908-242-0x0000000002C30000-0x0000000002C6A000-memory[.]dmp | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1908-242-0x0000000002C30000-0x0000000002C6A000-memory.dmp
Size

232KB
MD5

2df423d9abaff6ca8a36ba7e69af64d7
SHA1

3d407ec97f8326b6081a11bff7a3ca4f2c17eb78
SHA256

577af409d937659015fec1e5e48981c09cda84abc8a4705390904bac95a59fe3
SHA512

f7a52711d9eace611cf58bb6eb4d418e5ecf5ff8c7ea911684693e7ba44f96e78ceaf2c3c0adb79d710bd654c67d563df037f202ea876260f5844b4325fcf81e
SSDEEP

6144:VQdz3PhYS29HZ+bP1RiUaTAvR01MdIxsHU/NqKUgnRD/UFe:VQZPhYS2TStRopnS

Score

10^/10

agenttesla

Malware Config

Signatures

Agenttesla family
agenttesla

Files

1908-242-0x0000000002C30000-0x0000000002C6A000-memory.dmp
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 206KB - Virtual size: 206KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ