General

  • Target

    2672-20-0x0000000000400000-0x0000000000442000-memory.dmp

  • Size

    264KB

  • MD5

    d16cc59d0ea3a85f872d5cd4cde50595

  • SHA1

    24dc99c7f9759386635bdda5e4c3f5c28dc83ad5

  • SHA256

    fa7c4920227044a92d891e035d2972d1cf990ea15e18e794e5dc0d0a783947a6

  • SHA512

    7d75437c7aba55a21e32c7547a1f0ee6476edea63d946a2d7bca5eccb5b3b8f268cfd969651f36cbbd3ef6203e4897e1ac14cd08715ba193f34fb5877a4f0940

  • SSDEEP

    3072:7SW7FA0Ki/GrQLQb0PGXTVKGCy/cjxS5Tb1:WWZfNGrQLQbqKhKrEcjKTb

Score
10/10

Malware Config

Extracted

Family

agenttesla

Credentials

Signatures

  • Agenttesla family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2672-20-0x0000000000400000-0x0000000000442000-memory.dmp
    .exe windows:4 windows x86


    Headers

    Sections