General
-
Target
1316-142-0x0000000000400000-0x0000000000430000-memory.dmp
-
Size
192KB
-
MD5
cba95fe335ca1164b40d462cdeabb852
-
SHA1
335854e62934f61f38ec1449acca03bd7565a65b
-
SHA256
88d8ef172d0fee085ef66720d7ccb4acee15aea6155158f6f2ff9aa348ec5914
-
SHA512
1962e1dc7710a7b974aee2016cfd0ca4e857ecc85ab9bd6ff2ac4b8256b8b9147f7242f4eb89e92465cbda1209e81b822768f1b0979f04034a8276b46784c40e
-
SSDEEP
3072:Lz2JgeGUCzbvMiigeLFTDRjj1KAsTZvjAJEYEVQ0L4ZX5L:e8UCzbvw5LFTDRjj5spsKYsF4R
Score
10/10
Malware Config
Extracted
Family
agenttesla
Credentials
Protocol: smtp- Host:
mail.kennettextile.co.th - Port:
587 - Username:
[email protected] - Password:
M@1h5s2q - Email To:
[email protected]
Signatures
-
AgentTeslaV4 1 IoCs
-
Agenttesla family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
1316-142-0x0000000000400000-0x0000000000430000-memory.dmp
Headers
Sections