General
-
Target
2560-129-0x0000000000400000-0x0000000000430000-memory.dmp
-
Size
192KB
-
MD5
280c0adf30ab50c7c0ff376adcc71627
-
SHA1
2c0cbe874711dda4402c3bc05b0abaefeccd7165
-
SHA256
e514c2c6fa7e5ce6d7a54ed22985aaed88a150be18830d3247356bf66ec7c791
-
SHA512
b38e34d8a05534d5f858dbf68055ca0b678f961877ef2f046872cdb39c39e740aa6d0ce7921fbd246725b0f068fae3dbc0536897a59122148967912515f23bc2
-
SSDEEP
3072:/jjy7YNbmA3sqoY0f1aGvI8mGudCLok1wFk8y95HDhClaahx:KKbmA3sqgdaGgd5dCp2Fk8c5HDY
Score
10/10
Malware Config
Extracted
Family
agenttesla
Credentials
Protocol: smtp- Host:
brill.myhostcpl.com - Port:
587 - Username:
[email protected] - Password:
YRv0W)FH%o9S - Email To:
[email protected]
Signatures
-
AgentTeslaV4 1 IoCs
-
Agenttesla family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
2560-129-0x0000000000400000-0x0000000000430000-memory.dmp
Headers
Sections