General

  • Target

    2764-135-0x0000000000400000-0x0000000000438000-memory.dmp

  • Size

    224KB

  • MD5

    cf2b61828844f1367b3962f132a0c7d7

  • SHA1

    7830c73b3160b690b867558d6c993645ee0c6f45

  • SHA256

    a8153316fd7490fc74387475e7a54f65372a31a2c360ee05f697780df7610050

  • SHA512

    d584f66864e8aa27947e1faf435b79a21ae03916272b46603fbbfc456c82beb175acf1c1a41a58e9f4875d77709acf12dc77a78a6c95c10c02ca87a845c7c562

  • SSDEEP

    3072:AJ89MLHabeiLOq4KYgpvpmx5UFkpH5oagS6RjLj/m0/1ukkI97bQMrOpR:BKLtKPa5UepH5ES6Rjm0tuZI9flr

Score
10/10

Malware Config

Extracted

Family

agenttesla

Credentials

  • Protocol:
    ftp
  • Host:
    ftp://ftp.realcocina.com
  • Port:
    21
  • Username:
    [email protected]
  • Password:
    L2BBHXRj3FF8

Signatures

Files

  • 2764-135-0x0000000000400000-0x0000000000438000-memory.dmp
    .exe windows x86


    Headers

    Sections