Overview

overview

10

Static

static

10

2568-24-0x...ry.exe

windows7-x64

2568-24-0x...ry.exe

windows10-2004-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2568-24-0x0000000000400000-0x0000000000444000-memory.dmp

  • Size

    272KB

  • MD5

    dfb573d2a60709346238ba07af7fecd3

  • SHA1

    687a5a5ad86744c64a504cdf8be57d19baa4f837

  • SHA256

    2c9b2294679a481f7c6d3494fb0b5159c69542f419c3d9937b80dbf35f2af6f5

  • SHA512

    40a524c6c74daf3f6e76e311845a875021a4249d17a2ca59279e4eea6c33ada2bb44de838773a420907919d6c3b4d26fce92ee72a779d9866456840a49bdc8b0

  • SSDEEP

    3072:/YiVheWkJuuNz0RSC9suxvbq870Z2dlUJFTp:gi/kou+RSC+ulwZ2dlUF

Score
10/10
agenttesla

Malware Config

Extracted

Family

agenttesla

C2

https://discordapp.com/api/webhooks/1147567034830434314/bBP9_QrpVjC0IgaRlVL5rCHS1SsTuGSgNeEUI5ZqtnlOQ9CGuwF_676FAyKdneWbiamg

Signatures

  • Agenttesla family
    agenttesla
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2568-24-0x0000000000400000-0x0000000000444000-memory.dmp
    .exe windows x86


    Headers

    Sections