Overview

overview

10

Static

static

10

4412-1469-...ry.exe

windows7-x64

4412-1469-...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    4412-1469-0x0000000000400000-0x0000000000430000-memory.dmp

  • Size

    192KB

  • MD5

    ed2ece3a308b22be6f8811a3f5da9bfa

  • SHA1

    0e02e8217451307e212ba1c5917fcac22c894257

  • SHA256

    7ad9c9cdaa44717257edf4538d5a8f8941dcf2388e7cafb7399041080a829367

  • SHA512

    4202f9df120ac5637b13e8086471398bafec912a680d904890d6690eaddbdeddc70ee58e366e61129eb4667f494368826d7b87fe64e45b512f2020335732347e

  • SSDEEP

    3072:asxQijMHSRIZ0EJdBg+gO9NHOshd5a1MJyB3dP2syAxVLt:asxQijMH3PJTg+VfX5k5desfx

Score
10/10
agenttesla

Malware Config

Extracted

Family

agenttesla

C2

https://api.telegram.org/bot5866125639:AAHczhVa6KsnPdrAfpcJqJMrQ8ZeqF9Y-b0/

Signatures

  • Agenttesla family
    agenttesla
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 4412-1469-0x0000000000400000-0x0000000000430000-memory.dmp
    .exe windows x86


    Headers

    Sections