Overview

overview

10

Static

static

10

760-62-0x0...ry.exe

windows7-x64

760-62-0x0...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    760-62-0x0000000000400000-0x0000000000430000-memory.dmp

  • Size

    192KB

  • MD5

    b22948e542da6f7b60996822767561a7

  • SHA1

    0c1211f80828db108ab01fd254527e6072e15b17

  • SHA256

    12746fb6d81209de66fa4be6eae6af15719464aeed0492077edea0da2861073c

  • SHA512

    78254450732f4c8d9c1bbe01633b230f428eb0cdcc5b19dab70c8684747c84e6aa5d97b925e2bf7712aeee30809af2157184387d1865cff2b3e4529bded27ffb

  • SSDEEP

    3072:lM1IhUYvd6Ru1Hk1EHphY+Go9qgC/U3rxiFM1Yfk:lM17qHk1EHre/Wi

Score
10/10
agenttesla

Malware Config

Extracted

Family

agenttesla

C2

https://api.telegram.org/bot6112610523:AAGK4brrgvKwLFOTAeLGi7mJGyww6rZBns0/

Signatures

  • Agenttesla family
    agenttesla
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 760-62-0x0000000000400000-0x0000000000430000-memory.dmp
    .exe windows x86


    Headers

    Sections