Overview

overview

10

Static

static

10

2652-12-0x...ry.exe

windows7-x64

2652-12-0x...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    2652-12-0x0000000000400000-0x0000000000442000-memory.dmp

  • Size

    264KB

  • MD5

    466690ebabb1617d6f6ebe4a28ff05ac

  • SHA1

    ea5792d7984dc3b504c67ba746ba2995eba293ab

  • SHA256

    6be7eacb462f800617548f5fd8055af9f0be2fe935db7c42a90b5bcc1bf2dd4a

  • SHA512

    90ec6a5009d35f5e6e7c94c3778a2dfc1779e62adaa83c66be8b8d9325d28d326fddbbb9d50d8145f333e718c818d44e4fa6731bbc2bc560d933c5f40acae010

  • SSDEEP

    1536:k1ji1E+OY+Vd7Ue+k7yXQJOO3mH8iLwmRw2DFu3ZDSD7nncyI6qnT1K+azng+eTZ:gi5O5dSXoOncmdRel2nbI6qwngja8f

Score
10/10
agenttesla

Malware Config

Extracted

Family

agenttesla

C2

https://discord.com/api/webhooks/1154083402530705520/LmUTOU6qnhbMGF353qLs3uJeAcRgdZAU_91W2FzW0zGZDYHAHkXj05zXYzia0BHg8uXS

Signatures

  • Agenttesla family
    agenttesla
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2652-12-0x0000000000400000-0x0000000000442000-memory.dmp
    .exe windows x86


    Headers

    Sections