Overview

overview

10

Static

static

10

2720-12-0x...ry.exe

windows7-x64

2720-12-0x...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    2720-12-0x0000000000400000-0x0000000000442000-memory.dmp

  • Size

    264KB

  • MD5

    b8a46136a50ca7a145143619f959ceac

  • SHA1

    8b3a7f4aed22a5f48205ce336e96c4453d0f22a2

  • SHA256

    7ee0a2d2650d4055d41a2e6bffc413082c33da542e71888de9a5fec0c67f08ab

  • SHA512

    d37f2e3ea8a19a3108c9739a645ce8f1e33df780ad3008d9a8fb32bf724e36610202c7b5e8e96b423eadc6c577bb9480154f7d343fe36118812aa88218f78d08

  • SSDEEP

    1536:m96doC4fZ7RM82S6RMEx47UR/g1dbdmQ9KmF6ZE9Bue3JTbihOhDouhQwuyVf:m96dO5vWM17KmdgF+9JXiUPu1

Score
10/10
agenttesla

Malware Config

Extracted

Family

agenttesla

C2

https://api.telegram.org/bot6254955302:AAF0EGiuME-sfAF669pG465ZHleSu5QtvIg/

Signatures

  • Agenttesla family
    agenttesla
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2720-12-0x0000000000400000-0x0000000000442000-memory.dmp
    .exe windows x86


    Headers

    Sections