Overview

overview

10

Static

static

10

2576-22-0x...ry.exe

windows7-x64

2576-22-0x...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    2576-22-0x0000000000400000-0x0000000000442000-memory.dmp

  • Size

    264KB

  • MD5

    d3c7937f36b9e965f768d01bd14751c2

  • SHA1

    2f20bf5ac3da1161cccbe5f43c2c08e1baf22f56

  • SHA256

    2e1f4530d1fc67b5c4830e025f6d2ca609ef52d3a8f2e42519ddd229f27f9b23

  • SHA512

    6c02e998a3695de9397f7dcf5b075b7589ca3bfc099576afe7910c9f31f19409d8946fc8d3b7cc61aceaba0714fbf1bd8c27a8bb912df9d6ce1a0ee620e3d2fa

  • SSDEEP

    1536:r02aNqnF6ZKobZ0NyvR8kTwnRPVQZMu3vtwLdRnzku5nfBvup26cSx1QRQW6rcRn:7aNqAZjRvOe3mLH0dx11IRLlZRi6jv

Score
10/10
agenttesla

Malware Config

Extracted

Family

agenttesla

C2

https://discord.com/api/webhooks/1154326258021302292/Mu1LJr5Hzwgzt-oP0UaMu9jKsw-MNZUKEgkvdMj2iCXAeS6mmpa6xyfstP-NGi9M7fEY

Signatures

  • Agenttesla family
    agenttesla
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2576-22-0x0000000000400000-0x0000000000442000-memory.dmp
    .exe windows:4 windows x86


    Headers

    Sections