Overview

overview

10

Static

static

10

2248-163-0...ry.exe

windows7-x64

2248-163-0...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    2248-163-0x0000000000400000-0x0000000000430000-memory.dmp

  • Size

    192KB

  • MD5

    503a2cbf2fe9e0d714d601e8bfd69dad

  • SHA1

    96bcb56c7fefe09bc2af75e02a50738f05b670fe

  • SHA256

    5cbabfbff74ba8b68a478d7d704d44d59722a5dd75896bc0b69b90bfc763908f

  • SHA512

    98feaa76884de734acad652a0fe4dbc7df6052acde2b4093ddf521db7e42e88284f1a611c57697db980110c5f72a82ac68dadb3a64018bd04521ef980b101221

  • SSDEEP

    3072:k32HSnE/jEY8GuXh4WobZSZOxhsrHuZazHkvcH9/nFKhadV1cMXguX8:k32HSnvY8GuEt131g4kH9/nF7c2vX

Score
10/10
agenttesla

Malware Config

Extracted

Family

agenttesla

C2

https://api.telegram.org/bot5666831458:AAHU2MDXuo9nXKTEObJr6uVnWF_Bd9cLjL8/

Signatures

  • Agenttesla family
    agenttesla
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2248-163-0x0000000000400000-0x0000000000430000-memory.dmp
    .exe windows x86


    Headers

    Sections