Overview

overview

10

Static

static

10

2000-3-0x0...ry.exe

windows7-x64

1

2000-3-0x0...ry.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    2000-3-0x0000000000400000-0x0000000000442000-memory.dmp

  • Size

    264KB

  • MD5

    74d978f541fd2e005b1c32f54a8051ba

  • SHA1

    2b4262738793a63905a9d908efbe2ac830dea06b

  • SHA256

    5793a1437f308bab85b582fa5f966b2c69d5cbb385a6bee01abf02c265e6b073

  • SHA512

    37444c9db3daa32949440773a71d08c2b9b8dc46115e725a221b9874d214a2a7d412142705f72a77f75d4095619b912bd668bc092c89eb0529e62b75f0922a59

  • SSDEEP

    3072:GPSaLgGi1Azg8s6c+aH0KAWzqXUA/EhC:GPHE7SM8OH4D/c

Score
10/10
agenttesla

Malware Config

Extracted

Family

agenttesla

C2

https://api.telegram.org/bot6397238688:AAEpHHJSGgb8uU35gOKv_cNJ1uJTVg7khLM/

Signatures

  • Agenttesla family
    agenttesla
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2000-3-0x0000000000400000-0x0000000000442000-memory.dmp
    .exe windows:4 windows x86


    Headers

    Sections