General
-
Target
1620-71-0x0000000000400000-0x0000000000430000-memory.dmp
-
Size
192KB
-
MD5
f2b85cac6dd136330bcd2542739baef3
-
SHA1
0791ad893fb92ba6c18ccb821247f68298a1a5c8
-
SHA256
155777ab1a4c6164364c7214f390c69fc182bb90f6ee7b660594327e33a4b9a5
-
SHA512
75a0ea8c2ee7aa6c6776031e017703fbcfa4d9491174272111587c2a3a6a63ada03087898e00af1d584a041cdfcc839751218df387ff3af6589614432fc9190d
-
SSDEEP
3072:tQ79i6YMUySh16KP32iFd9V55deOOIyVmVZRL64U1gi3Wxa2XQVb4FKsYZyxc:qmLFd1T+mVZRLRmWJgVMFKZy
Score
10/10
Malware Config
Extracted
Family
agenttesla
Credentials
Protocol: smtp- Host:
smtp.yandex.com - Port:
587 - Username:
[email protected] - Password:
wjwigldexbkjptrp - Email To:
[email protected]
Signatures
-
Agenttesla family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
1620-71-0x0000000000400000-0x0000000000430000-memory.dmp
Headers
Sections