Overview

overview

10

Static

static

10

1988-70-0x...ry.exe

windows7-x64

1988-70-0x...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    1988-70-0x0000000000400000-0x0000000000430000-memory.dmp

  • Size

    192KB

  • MD5

    197fe1fc94a616c63a1ee67496087b3d

  • SHA1

    57b257417a2668ea36d9ea9a679c3d7eceaac891

  • SHA256

    e349fce30d0b3afc938526239a6342eb559efb893e0e53305f377be0d3a6c4ee

  • SHA512

    edd86e23e04e6078b1757ee342056f98391b556d53b8d81ae2b4626b59fbd32cf89ab9a46288d165b09d75a959d554e05476bbe3609ffe1240c8e0d21f883f9e

  • SSDEEP

    3072:wG1SANvZjNE5msVJcFMjar6Gc6afsUDkjUlQjU9mf:wG1SANvZjeRXcOa4jDkiQi

Score
10/10
agenttesla

Malware Config

Extracted

Family

agenttesla

C2

https://api.telegram.org/bot5814058627:AAFjPgERfyp3AZJXAfISMezajcw2VR_A_9U/

Signatures

  • Agenttesla family
    agenttesla
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 1988-70-0x0000000000400000-0x0000000000430000-memory.dmp
    .exe windows x86


    Headers

    Sections