General
-
Target
868-66-0x0000000000400000-0x0000000000444000-memory.dmp
-
Size
272KB
-
MD5
f098a0f1073579ac50cfa8b1ba412a20
-
SHA1
0993c89e150afdf451c29e0268681a5e9aeab422
-
SHA256
35d03c09cfc62c77e3b82e29fb6149f79952f69ea98382d3bc7f625cc2fdd56d
-
SHA512
2dc1aa7da06633d3e823037c58a3d36acf49066c91927825e25599b913295ca2ec532406cd222a3f45c1eb930ccf1647701c5bc3687f3da0a8ae67a6bb6e088c
-
SSDEEP
3072:5BGybM97hOQ/iK2jrOyipX/XbKjv0bbQhMulkm2x68KrtUtCgDeDwKgPS5xcZEcF:iDthOzj8XzKQwh2m4TvRaDLAiZjo
Score
10/10
Malware Config
Signatures
-
Agenttesla family
-
UPX packed file 1 IoCs
Detects executables packed with UPX/modified UPX open source packer.
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
868-66-0x0000000000400000-0x0000000000444000-memory.dmp
Headers
Sections