Overview

overview

10

Static

static

10

2620-11-0x...ry.exe

windows7-x64

2620-11-0x...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    2620-11-0x0000000000400000-0x0000000000442000-memory.dmp

  • Size

    264KB

  • MD5

    6e19d931aed39bc6be981250a35d5055

  • SHA1

    86a0ec39748360ae1e385721778f25c28fb752c2

  • SHA256

    f4d0299cfa9dc056032cce192ef0d798a9e4d57a9646faa72d88eb8834e28502

  • SHA512

    2ec55d50f8d14749c8090831d2017a8b14055c61565da68f0d6797dfba45f45092b51a89cd79481a0a73ba50f264b0de9fc3c2ef5a399384f07e779104352263

  • SSDEEP

    1536:5DYjJd0f2GV5sYPjKdfJceoe7CX9jg2LqZoeV7mMBwpY5fycXpowZRjxqu6g22ks:xoJWf2iyfjB7CNjcBr5fhZINgBbyIf

Score
10/10
agenttesla

Malware Config

Extracted

Family

agenttesla

C2

https://discordapp.com/api/webhooks/1150569545115893760/CjsiQWjSoCFkLk8IsGwaVU7lHuAInmY-6JL0nAOwy87AleYMNbqTZCoNvto3BexNyX68

Signatures

  • Agenttesla family
    agenttesla
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2620-11-0x0000000000400000-0x0000000000442000-memory.dmp
    .exe windows:4 windows x86


    Headers

    Sections