General
-
Target
2144-12-0x0000000000400000-0x0000000000442000-memory.dmp
-
Size
264KB
-
MD5
5b956899f9fd6aa37d4decb7e764952f
-
SHA1
b3faacab3e7e24d9e3c044be1c442b4db3e417a7
-
SHA256
4e6dba617911babc1a0c7eb5ae2e92a733e77213f59c9479c71de2818ed9339c
-
SHA512
7459a2f761c0575a331186a0ef71a4b5985726eef89ac6f9e5f1d0572a9ad9d33e11e98650ec21f795dbce4a38c09fe3b90cb95f85e444c0b453c9b14604a7f2
-
SSDEEP
1536:w45Jv8qODYJS//0W/JX2u8A+7Pz3f81irR0R1Qu5bjbqojV+7wmJ6JXV4YSOpgK1:w45BKn/JG73b6R1fbvVSwIQV4nO2j4
Score
10/10
Malware Config
Extracted
Family
agenttesla
Credentials
Protocol: smtp- Host:
mail.reneacruiseshalong.com - Port:
587 - Username:
[email protected] - Password:
KeToanRenea123$$$ - Email To:
[email protected]
Signatures
-
Agenttesla family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
2144-12-0x0000000000400000-0x0000000000442000-memory.dmp
Headers
Sections