Overview

overview

10

Static

static

10

728-25-0x0...ry.exe

windows7-x64

728-25-0x0...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    728-25-0x0000000000B00000-0x0000000000BC6000-memory.dmp

  • Size

    792KB

  • MD5

    99b447e8cf580bbe3b15310c2c6bbc7d

  • SHA1

    b486fc4727fabfe4f524ac49ec0d5a689c1f3a05

  • SHA256

    21af6d34b2a2fbb561180a9733c26934bff637f9ceb377067f9cb41131e29f44

  • SHA512

    50206c53e70ab7d015e5ae583051061ab6784ec94b3675f1cb7acb1cd4ac174f07d08e99e3b28dc6b1e355079d058a5af7f1f466ed4df9d1fc99b152f4bf8b6b

  • SSDEEP

    12288:6TpDE0yR24RvL6ENK8I/mJHC9+H+sy34Jh:CDE524Q8I6HCGis

Score
10/10
agenttesla

Malware Config

Signatures

  • Agenttesla family
    agenttesla
  • .NET Reactor proctector 1 IoCs

    Detects an executable protected by an unregistered version of Eziriz's .NET Reactor.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 728-25-0x0000000000B00000-0x0000000000BC6000-memory.dmp
    .exe windows x86


    Headers

    Sections