Overview

overview

10

Static

static

10

2864-11-0x...ry.exe

windows7-x64

1

2864-11-0x...ry.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    2864-11-0x0000000000400000-0x0000000000442000-memory.dmp

  • Size

    264KB

  • MD5

    4669331c3304e485ceaf4988fd1dbbf3

  • SHA1

    8d0d579d13e10d00be7b394da03bf7d8610faaa6

  • SHA256

    f1cae15f3f5007440948959272da23fbd83219832ab1b7413d208bc4b463cbb5

  • SHA512

    fa12baa3aef5f6589d915699c65f58b1b5ba6e03584550e7e00888e97a1bcac1b063e4057aff79fbc583b8e6955496801019d7f49e9d4cbf42b9db9359b368fe

  • SSDEEP

    1536:LfRvcVWmjzKf9TEOFRkKvyBbNjwWnyOFhV/dvSv8mx0hp+smCa4TmDYyrtrAgTTH:LCAmkpFRkzTnFZA8mxU6MTmMyxAe

Score
10/10
agenttesla

Malware Config

Extracted

Family

agenttesla

C2

https://api.telegram.org/bot6388040322:AAHg3XerCDV0NuvSFczZ1v8BD0vB9rQYmjU/

Signatures

  • Agenttesla family
    agenttesla
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2864-11-0x0000000000400000-0x0000000000442000-memory.dmp
    .exe windows x86


    Headers

    Sections