General
-
Target
2916-1166-0x0000000000400000-0x0000000000442000-memory.dmp
-
Size
264KB
-
MD5
2b0ba3727737a63a3d026d69a2dff8e6
-
SHA1
e8fb44eb04416f8c8ad33964d2117f0a619ae5e1
-
SHA256
b96b9a4375ed8e2722a4c7fbc0df5a6f4ea8efd82e1ee49daedaf41db577d749
-
SHA512
ced4ea64457e3ff2add49165ad0dbdec8ed428fca16289fba214b1aae4093a26f70601b57d62a4443bc82f994af3f38a30f803335dded976618a6cc409c9eb6c
-
SSDEEP
1536:HFhdX3MWQw78DAFSYmb89tE9cdZIwOULS5UKC82Oif1ejRmGml7TRAGsO8JyLHp4:lhBMapFSYN7hAUo2D1a/A79sbeK35tl
Score
10/10
Malware Config
Extracted
Family
agenttesla
Credentials
Protocol: smtp- Host:
mail.amtechprinting.com - Port:
587 - Username:
[email protected] - Password:
mNp###428aaiNN! - Email To:
[email protected]
Signatures
-
Agenttesla family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
2916-1166-0x0000000000400000-0x0000000000442000-memory.dmp
Headers
Sections