Overview

overview

10

Static

static

10

4960-1091-...ry.exe

windows7-x64

4960-1091-...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    4960-1091-0x0000000000400000-0x0000000000442000-memory.dmp

  • Size

    264KB

  • MD5

    dcd114dd60f25d087668055f81d4d11c

  • SHA1

    7ce87e7230018b535c350a02a012e25d106dc92f

  • SHA256

    389d80ce8faa7f265fe4e37e0f9de8d9548ba1ba8e1e331496a9f874b5194f58

  • SHA512

    cde1be6e640920a62a8250471607a083ecf232bb04eb9d753339e20a50ad4826c7033f4c4762e68f2374e4e57f93764fbe2986f853fa8582768448d4b5a29a9e

  • SSDEEP

    1536:sWbb83rxYVXdAb+QLhFXGBlzNIRx7C2m6tmDFktKenIjxdi7CYs4jDT0JiF1erp5:b/8rxIkT0lBmC/6oB2PDIJIeFVDTuXQ

Score
10/10
agenttesla

Malware Config

Extracted

Family

agenttesla

C2

https://api.telegram.org/bot6158579076:AAH5Usu3aBR5_ZtkA3tvZ627pnCgVEFhJW0/

Signatures

  • Agenttesla family
    agenttesla
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 4960-1091-0x0000000000400000-0x0000000000442000-memory.dmp
    .exe windows x86


    Headers

    Sections