General
-
Target
2556-16-0x0000000000400000-0x0000000000442000-memory.dmp
-
Size
264KB
-
MD5
8d8aedd107d14ea2e6773b2c2adaa4eb
-
SHA1
285e29070163e8b7badcafa82dc9f0dfde8f2212
-
SHA256
a8e97b4733d7d14f423d1111e38de79dc784e5cf8e29ecdf5776e7c4e43e9d12
-
SHA512
504381a40fa5f46923dd5c2bc684f7c15fb82063aec01e5d052b910d281c0c575935881eacc245a192833e4ea0727ce70e3bd53350766e63d1b51bed332e5410
-
SSDEEP
1536:EW/EQN6Dp+c7xNJ69cHMH7vLZKk+6yb+uqBeX4Rm/J6SkgPe69S6e3zqDJ0IsFYg:EW/CDDNQbvLsBXb+KXkWkgn9xeDSfP
Score
10/10
Malware Config
Extracted
Family
agenttesla
Credentials
Protocol: smtp- Host:
mail.seagullhotel.com - Port:
587 - Username:
[email protected] - Password:
sea345gull - Email To:
[email protected]
Signatures
-
Agenttesla family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
2556-16-0x0000000000400000-0x0000000000442000-memory.dmp
Headers
Sections