General
-
Target
296-63-0x0000000000400000-0x0000000000430000-memory.dmp
-
Size
192KB
-
MD5
f5254dbf22e7e372c810293300a2882b
-
SHA1
f6a876f2632df734d9516a660144c82c7d9d8b17
-
SHA256
19b86336232f7a09bfbc67da66a3ec871eccaba05a8965f0a7d83acf6bfc1609
-
SHA512
a8278ef79ab793a4147fd4f6324fe8e1558eef8d28922d70b5c1ab3a06a012418dc8a83cc7e8aaeaa75c6402c0df605f59dc7c4d5a4d069a76a704cb2ca5c383
-
SSDEEP
3072:dXYoMcXCKzqjEYkvnUk9H85GZBZ/WH2JOvbJyqGB6SDOWC6FY3ft1ARalNAE:BY8CKGjEYkvUk9HGmY2JOvFHGBJOWC6u
Score
10/10
Malware Config
Extracted
Family
agenttesla
Credentials
Protocol: smtp- Host:
mail.effco.co.tz - Port:
587 - Username:
[email protected] - Password:
flora@effco=123 - Email To:
[email protected]
Signatures
-
Agenttesla family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
296-63-0x0000000000400000-0x0000000000430000-memory.dmp
Headers
Sections