agenttesla | 2040-66-0x0000000000340000-0x000000000037C000-memory[.]dmp | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2040-66-0x0000000000340000-0x000000000037C000-memory.dmp
Size

240KB
MD5

1a472516530b6092a198b13044c93361
SHA1

9698b2f23c5e5de30d67d139dcdc2150ec4d78de
SHA256

9088957744ce54ba4ed5b7c11c17e4e986b1ddffade0f1c2e06eb2d9446b24d3
SHA512

d61f8bae2e90cf10dcbe474b1d2f65871078ef0e2455d66a44540facfd3fdf812cba35eff77b441b4f039b7189130c8f3b7d8c4a6a84de75110e9064c681164c
SSDEEP

3072:Dn42Mb0BinsFe4ZhAlB3A3JtfmpSUKy7pCWnu13G9df2fJA7MQpDQXYFr4zIgv:D42GnVkjUP7o2oGb2G7MSwmroIg

Score

10^/10

agenttesla

Malware Config

Signatures

Agenttesla family
agenttesla

Files

2040-66-0x0000000000340000-0x000000000037C000-memory.dmp
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 215KB - Virtual size: 214KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 792B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ