General
-
Target
432-78-0x0000000000400000-0x0000000000444000-memory.dmp
-
Size
272KB
-
MD5
c12b1974f90c966ab4780a8a3c64b893
-
SHA1
9c1acb6f4b80262705de14cb672c7e8d61a10c68
-
SHA256
7657da4ca82cd64a2d5d312eec6759b65255d4e8064e2576df551451e430816c
-
SHA512
8292bd2e26772d279336e2a8f4601679bab0261a11234b984ce1f91a649be6658f9a80a2f161a97b6566a909028b607c1d8c3f41e948f5e261d8ce0271837a2e
-
SSDEEP
3072:5BGybM97hOQ/iK2jrOyipi/XbKjv0bbQhMulkm2x68KrtUtCgDeDwKgPS5xcZEcF:iDthOzj8izKQwh2m4TvRaDLAiZjo
Score
10/10
Malware Config
Signatures
-
Agenttesla family
-
UPX packed file 1 IoCs
Detects executables packed with UPX/modified UPX open source packer.
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
432-78-0x0000000000400000-0x0000000000444000-memory.dmp
Headers
Sections