Overview

overview

10

Static

static

10

856-65-0x0...ry.exe

windows7-x64

856-65-0x0...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    856-65-0x0000000000400000-0x0000000000444000-memory.dmp

  • Size

    272KB

  • MD5

    2254ef3e558912ff4110967a256f9ea8

  • SHA1

    2e43531628f4c6650e682c690cdbce16bb20fd2a

  • SHA256

    95a067ea7e08f11412e1e02e9f4efabb1628196a57fb2da9a8fcf794093b58dd

  • SHA512

    1bf20ff36cb3acda1ea86062416526cd554e8c393e3ca492438511619763a42e4e85bc39842cafd3eede46850e914d7bf1affce9f54fd26cee405463b05f3603

  • SSDEEP

    6144:iDthOzj88zKQCmwqBbvBhQ6oubr+SxlGxA:iJkdQmwqZvDJbrTI

Score
10/10
upxagenttesla

Malware Config

Signatures

  • Agenttesla family
    agenttesla
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 856-65-0x0000000000400000-0x0000000000444000-memory.dmp
    .exe windows x86


    Headers

    Sections