agenttesla | 1360-63-0x0000000000400000-0x000000000043A000-memory[.]dmp | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1360-63-0x0000000000400000-0x000000000043A000-memory.dmp
Size

232KB
MD5

302b657be0571d82424bfe7628d03927
SHA1

61a2f83d6a9b918deccf8841ea18f7c8e352a0d9
SHA256

cef5919c57853a4bc6472cde147420e14268267df05e6ca0496f44ae896155d9
SHA512

7f5786f18b0fd8c06ff43f08e340b45357bfa4f7c46bf78dc2d57c90c3c0d29426f6affdfe830df95c8e1461a8097e90a5fae6db50718505170ba2c4a39b61ed
SSDEEP

6144:KRqfqCFEa9ZnwPZU/c2UYfTSxCXy7eL2j4XsWKEXIlsJrme:KRnCFEa9ZkC06SuF

Score

10^/10

agenttesla

Malware Config

Signatures

Agenttesla family
agenttesla

Files

1360-63-0x0000000000400000-0x000000000043A000-memory.dmp
.exe windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 207KB - Virtual size: 206KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ