General
-
Target
520-69-0x0000000000400000-0x0000000000615000-memory.dmp
-
Size
2.1MB
-
MD5
7a33b7294ad883121b2d3d8a145a28ce
-
SHA1
4097956bbd33a5feb4dab7f2ce2bef7aad57cdfd
-
SHA256
cd09b1435d2afc450b5844b77ae9c20d4c3eae379f05d7ae1813f13ed4d6740c
-
SHA512
83ad8a6783917f747aba6fb18f9121e4d16d1abecec0b10dd51b11e3d0d6582de1fc05d44f2c7ba0f2418586921539c65aa6ee05bf58f3ffe1b0d6d2c37628d9
-
SSDEEP
3072:dZHZed8UOYJa15jbI18c3+fy4fePgqx6gHp42lQSMyKH:g8UO8AR+j3Wf25HpB6Nx
Score
10/10
Malware Config
Extracted
Family
agenttesla
Credentials
Protocol: ftp- Host:
ftp://ftp.mcmprint.net - Port:
21 - Username:
[email protected] - Password:
FpFpVzJdTV!d
Signatures
-
Agenttesla family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
520-69-0x0000000000400000-0x0000000000615000-memory.dmp
Headers
Sections