General
-
Target
2744-11-0x0000000000400000-0x0000000000444000-memory.dmp
-
Size
272KB
-
MD5
0db7766ed2c6319fd3d7723becf93224
-
SHA1
853d9af411471104e03ead082b34770587597221
-
SHA256
193b823a451dd11257932af78d29f6914aa654e0c30230e8ce9576dae0615d56
-
SHA512
49bb337f52ab3d753318fdf15c0b3d23ce8292a09d8d7f37f50eeeec98e68381110701c7dd57bb76e780fd0578810a7923f5c7fce1fa0af553130517eb5cc461
-
SSDEEP
1536:HR9nZxyF0ufMIMjBEA1p0y8BKMPw5Lb2I7TYPCPlXd0amoihW5S0TvJJQbDygJi1:x9nZiNRhyMqLbzf03CrTCDygJiOz8
Score
10/10
Malware Config
Extracted
Family
agenttesla
C2
https://api.telegram.org/bot6553720731:AAFlRmS2ASYQzcZWfGHl1hNLKx5z8GhysCk/
Signatures
-
Agenttesla family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
2744-11-0x0000000000400000-0x0000000000444000-memory.dmp
Headers
Sections