General
-
Target
2972-15-0x0000000000400000-0x0000000000442000-memory.dmp
-
Size
264KB
-
MD5
068a5370fed2e09cf2cdd4d602dfeba1
-
SHA1
dc8d372c2390f7121c7061d27d8b56ee8bd3dab0
-
SHA256
c0c25edd868ef70892f8e2e88abf982f3515f50073724477b556ad18af05e401
-
SHA512
2c1f42fcaafd0904dc9d187cba59a31a7db4a3efc189e5122d445b1fa319ea4af572949e3a2604f1f13f5e45c7391984c9ef5074863c3801f242624b7c509178
-
SSDEEP
1536:zAB0mlLhXu+xu80g9JVRZkHUBv2xQgRvDedYssPpqjW35mIkXqxq1P1H4MYvJH93:zAB0mDuwt9lKHQRsx6WJlkXhR1YbvJN
Score
10/10
Malware Config
Extracted
Family
agenttesla
Credentials
Protocol: smtp- Host:
mail.amtechprinting.com - Port:
587 - Username:
[email protected] - Password:
fxHXu0@%i0LE - Email To:
[email protected]
Signatures
-
Agenttesla family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
2972-15-0x0000000000400000-0x0000000000442000-memory.dmp
Headers
Sections