Overview

overview

10

Static

static

10

2796-9-0x0...ry.exe

windows7-x64

2796-9-0x0...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    2796-9-0x0000000000400000-0x0000000000442000-memory.dmp

  • Size

    264KB

  • MD5

    7355de117ed401bc64318101cbab2ad5

  • SHA1

    1ffb67fd6ef618be3821c85f04256ea760dd0429

  • SHA256

    747ef3f6796451c2971230c05c8418118fd2b28482314e8021dbd41389c22faf

  • SHA512

    6fc10b0cbee6e41bf899cb27976cd1cda0c0634ab164a8e1aedd8690a2e429e43dc0852343440075445d68a656ba884d8a2eaafe357c633d1365c5ad795b7fd4

  • SSDEEP

    1536:sqG46zFx7hhfYbIVwxI1DUUjYeSe9+cQj7Le+wL3yUNjmIp4HgJ6IAN4b7yReTmU:sqgBomjtSeMrXepNc06nN4qReqYRzJd

Score
10/10
agenttesla

Malware Config

Extracted

Family

agenttesla

C2

https://api.telegram.org/bot6523398839:AAFikJ4477MgXpD4yFbUFY5_UzTjj9hMeaE/

Signatures

  • Agenttesla family
    agenttesla
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2796-9-0x0000000000400000-0x0000000000442000-memory.dmp
    .exe windows:4 windows x86


    Headers

    Sections