General
-
Target
2468-24-0x0000000000400000-0x0000000000442000-memory.dmp
-
Size
264KB
-
MD5
d46c8f8f413831b4fd3cf2f8ecbf8dd8
-
SHA1
8b4f43dceccff3ba0cd8790d4362b01b5049fb01
-
SHA256
351abdd7194a6585606b1bb65dfbdc86642733b5e4a45ccf3d7a910d5bbe150d
-
SHA512
7c93df9e02d36956a6e650f4f08447f72a8f9601c6b0d2f5a2bd1bc18887cc385a3d099dfdf8f496d6492fadd396d159db487ea54e43d68480d4d2ea910f3f3e
-
SSDEEP
1536:gPRG/YGRQOMUl1vAM2Kx9X16s6BOZjvvbiAWeNPokN4Ko9jfzxjYgxI7L0wB/qNv:gG//wUldxP36gZvby3KsjrdYgbqo
Score
10/10
Malware Config
Extracted
Family
agenttesla
Credentials
Protocol: smtp- Host:
mail.whnt.info - Port:
587 - Username:
[email protected] - Password:
,Q++ evb@hUV* - Email To:
[email protected]
Signatures
-
Agenttesla family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
2468-24-0x0000000000400000-0x0000000000442000-memory.dmp
Headers
Sections