General
-
Target
2584-65-0x0000000000400000-0x0000000000430000-memory.dmp
-
Size
192KB
-
MD5
9db6e0f5adc25963c063ad2381015611
-
SHA1
ed6f80fefcdd5582b512a4f0ade072f2b37958af
-
SHA256
6dbd6a64c06212b4f0834b84d8928a9837e8e22177061d91aa4236ad831ed48f
-
SHA512
c5ed695984040e02c213520067a5385f3a131555cbc34042e372a5262f05e5f632bd3d1d7dabd8638bac6171285c18ffedb33a418f0d4c00207cab86a9c72efc
-
SSDEEP
3072:nXcwOXJAkHCmt9VB1NC4ZaW9ldvgRFqltDklBHFpl:KXSkHCIAeLxgLwtKp
Score
10/10
Malware Config
Extracted
Family
agenttesla
Credentials
Protocol: smtp- Host:
mail.gulfamericanhospital.com - Port:
587 - Username:
[email protected] - Password:
HsoGAH@22 - Email To:
[email protected]
Signatures
-
AgentTeslaV4 1 IoCs
-
Agenttesla family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
2584-65-0x0000000000400000-0x0000000000430000-memory.dmp
Headers
Sections