agenttesla | eb01551f2d59ebdbefac4ea129a5edea19d6966073d4fd5b4c9a49d2beabf8bc | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

1744-79-0x...ry.exe

windows7-x64

1744-79-0x...ry.exe

windows10-2004-x64

Sharing

General

Target

1744-79-0x0000000000400000-0x0000000000430000-memory.dmp
Size

192KB
Sample

230614-fgk81sda72
MD5

2501e2ecbdde5778f833d88b5a8b734b
SHA1

b102fd5c53c1d582c6baeaf4911913d8eef9eee9
SHA256

eb01551f2d59ebdbefac4ea129a5edea19d6966073d4fd5b4c9a49d2beabf8bc
SHA512

24a400e47918eca1e3c85e377dd41cbe26e896e441b9607c819cef5bb76e89eac7804fea4e46e260d342cea009386743fbee1d0acbbe1d553d0149857225dc9d
SSDEEP

3072:lM1IhUYvd6Ru1Hk1EHphY+Go9qgC/U3rxiFM1Yfk8:lM17qHk1EHre/Wi

Score

10^/10

agenttesla

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

1744-79-0x0000000000400000-0x0000000000430000-memory.exe

Resource

win7-20230220-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

1744-79-0x0000000000400000-0x0000000000430000-memory.exe

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

150 seconds

Malware Config

Extracted

Family

agenttesla

C2

https://api.telegram.org/bot6112610523:AAGK4brrgvKwLFOTAeLGi7mJGyww6rZBns0/

Targets

- Target
  
  1744-79-0x0000000000400000-0x0000000000430000-memory.dmp
- Size
  
  192KB
- MD5
  
  2501e2ecbdde5778f833d88b5a8b734b
- SHA1
  
  b102fd5c53c1d582c6baeaf4911913d8eef9eee9
- SHA256
  
  eb01551f2d59ebdbefac4ea129a5edea19d6966073d4fd5b4c9a49d2beabf8bc
- SHA512
  
  24a400e47918eca1e3c85e377dd41cbe26e896e441b9607c819cef5bb76e89eac7804fea4e46e260d342cea009386743fbee1d0acbbe1d553d0149857225dc9d
- SSDEEP
  
  3072:lM1IhUYvd6Ru1Hk1EHphY+Go9qgC/U3rxiFM1Yfk8:lM17qHk1EHre/Wi
Score

1^/10
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy