General
-
Target
2612-16-0x0000000000400000-0x0000000000442000-memory.dmp
-
Size
264KB
-
MD5
488beba5a82d109d31f55cd93b3b55fd
-
SHA1
6e701abbf305a4c77f4f8d3d0c8b74591779b8eb
-
SHA256
b976b8619a916f94a5a49530c7f5f95408d006bf7a2afcd3f9b1be0bcfa01433
-
SHA512
46c8dd1f1454f8392c41c5717a8a194042b872ae63d86988d0beed8b218bc127a2c48f1791323691839813f9ff92c7e8274ebbf327ab19e077f6fae60cede8e9
-
SSDEEP
1536:cNDHA8AC+fjJcUkz9OthPehOtlplljWb7cutTfJx9kyQnCQ/DsX2lfyX1UjPqZMm:h8AesWKlpTCbdLJfQ3wX2l6Xy7qM4
Score
10/10
Malware Config
Extracted
Family
agenttesla
Credentials
Protocol: smtp- Host:
mail.versandundco.de - Port:
587 - Username:
[email protected] - Password:
church12@ - Email To:
[email protected]
Signatures
-
Agenttesla family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
2612-16-0x0000000000400000-0x0000000000442000-memory.dmp
Headers
Sections