Overview

overview

10

Static

static

10

2200-78-0x...ry.exe

windows7-x64

2200-78-0x...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    2200-78-0x0000000000400000-0x0000000000430000-memory.dmp

  • Size

    192KB

  • MD5

    08d4f375176fc410841d0bf9dcf1982c

  • SHA1

    59f244a3457021f79005fcc0e3d2e9526735f331

  • SHA256

    479d302aadfb60a7e7ea8d18b8d43c3e841e96eddbfe00cddbd9c63280712376

  • SHA512

    54b5ea4aeb3e29f401224002d084fc47cec64a87a9a0de605e19083539aaa4778a4013d97aa3090615d0c75723e463a0f0ceb9e80057b9ee967efd49e1be6d4e

  • SSDEEP

    3072:DMie4HJ7MHR1W/8/q9oonxaSy/rg1Rk5R4bN0:winMLWqAv45R4B

Score
10/10
agenttesla

Malware Config

Extracted

Family

agenttesla

C2

https://api.telegram.org/bot6286742839:AAEBPY8dNKiSbc20pxOzagMixRMMK1n0Jro/

Signatures

  • Agenttesla family
    agenttesla
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2200-78-0x0000000000400000-0x0000000000430000-memory.dmp
    .exe windows x86


    Headers

    Sections