agenttesla | 1532-64-0x0000000000400000-0x0000000000430000-memory[.]dmp | Triage

Submit
Reports

Overview

overview

Static

static

1532-64-0x...ry.exe

windows7-x64

1532-64-0x...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

1532-64-0x0000000000400000-0x0000000000430000-memory.exe

Resource

win7-20220812-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

1532-64-0x0000000000400000-0x0000000000430000-memory.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

1532-64-0x0000000000400000-0x0000000000430000-memory.dmp
Size

192KB
MD5

d0a74c02ed45648ee748d47d4b614c54
SHA1

7104e7b7ebef41065cb00f727da224a00f16f3cd
SHA256

bf93d34ce41e2751a64fcb1edd44d94867f750d95a7627aa9dbbfec02054133b
SHA512

b942b6e5895e397e241543d04d3ec189747b98282d484358863b17229c570b431b6cf46ea3c2a07d4a4c8fe3866c81c64bd1fcc7a108efa2046271ca0b5f5bf6
SSDEEP

3072:ckgRfe3Q8tYN6wXx2tlukfo0kPMyuCH0qxVYFtNRXKou/ai6SPVU:1gBe3Q8tYN6wXxzkQ0FUUE6BKLNPq

Score

10^/10

agenttesla

Malware Config

Extracted

Family

agenttesla

Credentials

Protocol: smtp
Host:
mail.unrc.ir
Port:
587
Username:
[email protected]
Password:
Basiri@1334
Email To:
[email protected]

Signatures

Agenttesla family
agenttesla

Files

1532-64-0x0000000000400000-0x0000000000430000-memory.dmp
.exe windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 165KB - Virtual size: 165KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy