General
-
Target
3376-1090-0x0000000000400000-0x0000000000442000-memory.dmp
-
Size
264KB
-
MD5
47e6b7caecdc5babef139daff786b766
-
SHA1
201d9d592efbaecd5f8039c00c4c7d1b3058c366
-
SHA256
06f91abbd7256c019db2188f3fa349b951cc5f3fe319cc8c2d4a92b2f5f0e64c
-
SHA512
83e6ebf655b820ad4ac6893cd4549f2bedbefbd04f5bd7f05af5d2e1f03889f5e11a5b97f92e97acf627ac666a10954adc4a90839b85f601814452f3b991aa60
-
SSDEEP
1536:JlfLaMIVKKIt1Vjg4DxlxufHfnygQsDlFD4XJrU4EodILIH4LoJaIrs9dCdX3:HLap5I9jRtgLRFzWdIy48kIoPU3
Score
10/10
Malware Config
Extracted
Family
agenttesla
Credentials
Protocol: smtp- Host:
mail.amtechprinting.com - Port:
587 - Username:
[email protected] - Password:
!_ZSDk!#$;;V - Email To:
[email protected]
Signatures
-
Agenttesla family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
3376-1090-0x0000000000400000-0x0000000000442000-memory.dmp
Headers
Sections