Overview

overview

10

Static

static

10

1336-57-0x...ry.exe

windows7-x64

1336-57-0x...ry.exe

windows10-2004-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1336-57-0x0000000000090000-0x00000000000C0000-memory.dmp

  • Size

    192KB

  • MD5

    87c36f473c9f30c5ceb364a631d79489

  • SHA1

    2a0021dc00a55d24fc2fe2a1055c01d0c055e628

  • SHA256

    b7fef77d826119fc84ef840ccea55f9cb41e3d635eef8201b20b42f5c26cdb3c

  • SHA512

    363b6876a2dd866ec8e1663840c8c2a0ecaa97c5824e25be5bcba5065069c091ea3ced33f0660f75753990b9d16f069ec6a5f9cf6cc4296f928a8ada1fa34502

  • SSDEEP

    3072:zRBvFCwJDiE3tpO3u1e5G3ecWaOlm0IHDJQa+jh7Zf23LkEfqtKbVNXfCr3p:zRBvFuatpOMEPraOI0IF6jhVf23ZCty4

Score
10/10
agenttesla

Malware Config

Extracted

Family

agenttesla

C2

https://api.telegram.org/bot5954474519:AAEGnfW1mRvGRxq-zIAvwJfpKEbhLLiqVaM/

Signatures

  • Agenttesla family
    agenttesla
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 1336-57-0x0000000000090000-0x00000000000C0000-memory.dmp
    .exe windows x86


    Headers

    Sections