General
-
Target
2720-69-0x0000000000400000-0x0000000000430000-memory.dmp
-
Size
192KB
-
MD5
8d8bb3c8ad588f9166d86685a969c15a
-
SHA1
5b0901ec7affa923e16fd73a975fb7d2666121a2
-
SHA256
12660a8d5b36610c5e37d3d0b529636c65aa9de5d6a989946e11a6c73f3ac2f7
-
SHA512
4e90c1a0b1116bc7f054c154e74ace5120dcd7102ca090fd07495c4476c6e8238d816619ae8f6f90bdded805d75f7db46201fd23727bd28d92ed5e9d1a5eb457
-
SSDEEP
3072:Gn12082B+cg2iZ1D/qI/xbJ9AGAv25BIs2fv+Oi3:AvRB+pZ1D/qIZt95BIZv+O
Score
10/10
Malware Config
Extracted
Family
agenttesla
Credentials
Protocol: smtp- Host:
mail.napco-pharma.com - Port:
587 - Username:
[email protected] - Password:
q1MU^5t%8e9 - Email To:
[email protected]
Signatures
-
AgentTeslaV4 1 IoCs
-
Agenttesla family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
2720-69-0x0000000000400000-0x0000000000430000-memory.dmp
Headers
Sections