General
-
Target
4716-8-0x0000000000400000-0x0000000000442000-memory.dmp
-
Size
264KB
-
MD5
04951db897fee4a54d9f3ad1b2b9f0ec
-
SHA1
de6191d6d531acdf92cedffa4701c2e74a43e984
-
SHA256
71bd7c09e90ede25b441517bb821aa20b75ad6895515b44360f14c57ae6dfc76
-
SHA512
b24d3cad5cd1fe194b4d52e4cf9adc5d03cf07c2eef9ca089fe5049fdcb4fee81bb4d7d9b6c04131419e7a29db7a93cec0784eed1a985a0694b8ec61000a0e15
-
SSDEEP
3072:HvhSLGdqTUjaf3fJtAlJ1IfZ5wQiilf7Qpfz18:HvhyD6C3fJtAP1Y95dQF
Score
10/10
Malware Config
Extracted
Family
agenttesla
C2
https://discord.com/api/webhooks/1153539462454853703/uBqITIGCHxh487IDtEi05_T0CVFY7MPJ28kszIkbpskJK5Vlm6XKFG1spM2XKrJU3dsq
Signatures
-
Agenttesla family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
4716-8-0x0000000000400000-0x0000000000442000-memory.dmp
Headers
Sections