Overview

overview

10

Static

static

10

2488-18-0x...ry.exe

windows7-x64

2488-18-0x...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    2488-18-0x0000000000400000-0x0000000000444000-memory.dmp

  • Size

    272KB

  • MD5

    b55e75cb025e9d5aef787c4d1650e4c6

  • SHA1

    e8aa7df3d82853c0be191700b3ed713f147d1ffb

  • SHA256

    1dc3fb3ae3e02833d123136402c7fd393a0da10d7af0587ee31f9b6aeed89817

  • SHA512

    09bd4e7ae7e2d3de64f958e029e1c6ade053b9520803b489b9bc46faa9901fc8e06f4885de0863ddaf9c0f8f954b678627d0e500708118cbf73d15a45f666f10

  • SSDEEP

    1536:NA0P//Ou20c6u/fMr+mXIom2HjYbyetL1iAtjD4yHSFd29wSc/n47MCRWoprZXGY:y0PMvRzbHzjDvdc/nuYwZWQGUuEUrNW

Score
10/10
agenttesla

Malware Config

Extracted

Family

agenttesla

C2

https://api.telegram.org/bot6547287693:AAGGgrnDvtLiSnFJxDycaluud9osnQGIN1E/

Signatures

  • Agenttesla family
    agenttesla
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2488-18-0x0000000000400000-0x0000000000444000-memory.dmp
    .exe windows:4 windows x86


    Headers

    Sections