General
-
Target
2612-19-0x0000000000400000-0x0000000000442000-memory.dmp
-
Size
264KB
-
MD5
19bf5405e3aa975458b0a42bf1fbccf2
-
SHA1
4894fea6a2e9f46e55afba6fc3eb6f29566774a5
-
SHA256
b16bdc31d3713b89c3514552c5e22badde312adfc9567065754bf8fc9d32252b
-
SHA512
70ee12a31e3a6709ad8d1ece9b57312d57926ea07f7f4cbc133f2834dc1fc729ca7109abf7f11503520bb36635adc242548f144e71355fa918edae43f83a6e00
-
SSDEEP
1536:2vtwjcTAkd/pScDeGCy2BJEer69MbciV0zf1HbkCbnbw9TC/eWnUQ5LpIZYdGu1C:2ujcTAk7WTJ0kciORbS4eWnUoUtIC
Score
10/10
Malware Config
Extracted
Family
agenttesla
Credentials
Protocol: smtp- Host:
posta.ni.net.tr - Port:
587 - Username:
[email protected] - Password:
nilya1957 - Email To:
[email protected]
Signatures
-
Agenttesla family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
2612-19-0x0000000000400000-0x0000000000442000-memory.dmp
Headers
Sections