General
-
Target
4252-142-0x0000000000400000-0x0000000000430000-memory.dmp
-
Size
192KB
-
MD5
3f26364d1bca5f3e45f72186a875641b
-
SHA1
85291ede54d50121fad486aac3d9a37f4c03803c
-
SHA256
c804be775f36805c98e5db01fecfd8550206773c5c3dc2ae27b22fa892c45c95
-
SHA512
7746ebeee234c87f05fb5eecc8d82892bc9b24f9c6d2becb80ca5d00d9f159c7b45161b968f761b96a1e4587dd4d197e6516dfeef1ee7060c6b816e3246f5b27
-
SSDEEP
3072:eWeCqPHjVzkbUwcqRL+b9rlZpU6pxsFGs84QvDpZio5E3:sP9kbyqRL+bdpvVs8rio
Score
10/10
Malware Config
Extracted
Family
agenttesla
Credentials
Protocol: smtp- Host:
mail.kingdomofmiso.com - Port:
587 - Username:
[email protected] - Password:
nrU*QuBIa6HR - Email To:
[email protected]
Signatures
-
AgentTeslaV4 1 IoCs
-
Agenttesla family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
4252-142-0x0000000000400000-0x0000000000430000-memory.dmp
Headers
Sections