Overview

overview

10

Static

static

10

2620-11-0x...ry.exe

windows7-x64

2620-11-0x...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    2620-11-0x0000000000400000-0x0000000000444000-memory.dmp

  • Size

    272KB

  • MD5

    db55a41bb03c584b2ca11152e1d21462

  • SHA1

    e9bb974729c145ea4f318bacae7e0788252540d8

  • SHA256

    2f5fcaa7a42eb78237a70046e5b5754fe5bae4f8ad04ad4b1eff31cd945ed8b2

  • SHA512

    863bcabccc61f7d1d8655779f4961c09e310947759cd22d25e38493ec4f4af202b129b17499b474cef3c169b753e454ae6cfbf86c7c77da87a0ea095a8a1f452

  • SSDEEP

    3072:p1qojZmRPnTxhKtCFglhdoV/7yEi6Bfgjo:p15jZGxheCFYoV/7+wOo

Score
10/10
agenttesla

Malware Config

Extracted

Family

agenttesla

C2

https://api.telegram.org/bot6543832281:AAF0O-sB2JuhhWieylcwLs9yQGWcvpyk_5Y/

Signatures

  • Agenttesla family
    agenttesla
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2620-11-0x0000000000400000-0x0000000000444000-memory.dmp
    .exe windows:4 windows x86


    Headers

    Sections